Tech – Page 59 – 37'.news ¯\_(ツ)

February 25, 2014

Apple releases fix for SSL Vulnerability in OS X Mavericks, Mountain Lion and Lion

In the morning of Tuesday, February 25, 2014 Apple releases fix for SSL Vulnerability in OS X Mavericks, Mountain Lion and Lion.

The fix for SSL Vulnerability is included in OS X Mavericks 10.9.2.

Safari on OS X Mavericks 10.9.2 passed the goto fail test.

OS X Mavericks 10.9.2 Safari goto fail test

OS X Mavericks 10.9.2 Update

This update:

Adds the ability to make and receive FaceTime audio calls

Adds call waiting support for FaceTime audio and video calls

Adds the ability to block incoming iMessages from individual senders

Improves the accuracy of unread counts in Mail

Resolves an issue that prevented Mail from receiving new messages from certain providers

Improves AutoFill compatibility in Safari

Fixes an issue that may cause audio distortion on certain Macs

Improves reliability when connecting to a file server using SMB2

Fixes an issue that may cause VPN connections to disconnect

Improves VoiceOver navigation in Mail and Finder

For detailed information about this update, please visit: About the OS X Mavericks 10.9.2 Update

Security Update 2014-001 (Mountain Lion)

Security Update 2014-001 (Lion)

——-

The SSL Vulnerability is currently present in iOS 7.1 beta 5 build 11D5145e. According to an Apple engineer, a new build of iOS 7.1 beta is coming “really soon”.

February 23, 2014

Firefox 28.0 Beta 4

Firefox 28.0 Beta 4 became available on February 20, 2014.

Firefox 28.0 Beta 4

New build of Flash Player 13 Beta also became available on February 20, 2014.

February 23, 2014

Angry Birds Toons: Operation Opera

Episode fifty of Angry Birds Toons, “Operation Opera” is now playing at Toons.tv and Angry Birds Apps for your favorite devices.

Angry Birds Toons Operation Opera

Stay Tooned for next week episode. Two more episodes until Angry Birds Toons turns one year old!

February 22, 2014

SSL Vulnerability presents in iOS 7.1 beta and OS X Mavericks 10.9.2 Developer Preview

Apple released iOS 6.1.6 and iOS 7.0.6 to address an SSL vulnerability issue on Friday, February 21, 2014. According to reports, the same vulnerability presents in the current build of OS X Mavericks 10.9.1, OS X Mavericks 10.9.2 build 13C62 and iOS 7.1 beta build 11D5145e.

Based on goto fail; test Google Chrome, Mozilla Firefox and Camino on OS X are not affected by this vulnerability. Camino browser was no longer developed as of May 31, 2013.

iOS 7.1 beta 5 build 11D5145e SSL Vulnerability

Apple is expected to fix this SSL vulnerability issue in the upcoming build of iOS 7.1 and OS X Mavericks (10.91 and 10.9.2 Developer Preview).

John Gruber wrote a great post on Daring Fireball regarding this SSL vulnerability issue and NSA exploits on iOS.

According to Jeffrey Grossman’s tweet (Jeffrey903):

I have confirmed that the SSL vulnerability was introduced in iOS 6.0. It is not present in 5.1.1 and is in 6.0 /cc @markgurman

Tin foil hat might be handy, as a sleeper NSA agent might be working at Apple.

February 21, 2014

iOS 7.0.6 and iOS 6.1.6

Apple releases iOS 7.0.6 and iOS 6.1.6 through Software Update.

This security update provides a fix for SSL connection verification.

UPDATE:

About the security content of iOS 7.0.6

iOS 7.0.6

Data Security

Available for: iPhone 4 and later, iPod touch (5th generation), iPad 2 and later

Impact: An attacker with a privileged network position may capture or modify data in sessions protected by SSL/TLS

Description: Secure Transport failed to validate the authenticity of the connection. This issue was addressed by restoring missing validation steps.

iOS 7.0.6 Update

iOS 6.1.6 on iPhone 3GS

It is unclear if this issue has been fixed in recent iOS 7.1 beta build. According to a well connected iOS Developer, Apple would release iOS 7.1 GM build in the coming weeks.

February 20, 2014

Dropbox Updates Terms of Service, includes the “we read your documents” clause.

Dropbox has been busy informing their users regarding the updated Terms of Service. The Terms of Service also includes the “we read your documents” clause.

Permissions. We care about having Terms of Service that are readable, give the right amount of context, and avoid unnecessary legalese, so we’ve updated our language to better match the permissions you give us with the features you use. For example, to provide you with document previews, our automated systems need permission to access and scan your stuff for those previews — so we explain this in the new Terms.

Users would love the document previews feature at the cost of allowing Dropbox system automatically scan and read the documents to generate the said previews. Similar to the way Google read your emails to serve “contextual” ads. In my experience, in-Gmail ads never caught my interests.

Dropbox Blog 20140220

February 19, 2014

Microsoft OneDrive, formerly SkyDrive

Microsoft has relaunched SkyDrive and rebranded it as OneDrive.

OneDrive

Microsoft OneDrive is available for Android, iOS, Mac, Windows and Windows Phone.

OneDrive comes with 7 GB of free storage. Users can get 3 GB of additional storage by turning on Camera Backup.

Microsoft OneDrive 3 GB Camera Upload Bonus