"Now I Have To Press Cmd-Q" (9/17/04)
SceneLink
 

Has anyone noticed that Apple seems to be issuing a whole heckuva lot of security updates lately? Honestly, it got to the point where we just stopped mentioning them, because if you folks are half as sick of seeing them pop up in Software Update as we are, you definitely don't want to hear us yakking on about them, too, especially if they aren't fixing anything major and/or dramatic. (Hence our total non-coverage of Security Update 2004-09-07: "Privileged programs using CoreFoundation can be made to load a user supplied library"? Zzzzzzzz...)

So we were all prepared to ignore Security Update 2004-09-16 as well, until we noticed that it only patched a single application-- and that application was iChat. Since we'd never known iChat to be exactly plagued by security holes before (and certainly not any urgent enough to justify taking up a whole security update all by its lonesome barely a week after the last security update), we figured we should take a look and see what scary sort of Microsoftian security chasm was gaping in front of hapless iChat users that would certainly swallow them whole and send them plummeting to their doom.

It's the least we can do for the hapless. After all, those poor guys don't have any hap.

Well, we did a little poking around, and found Apple's explanation of just what this update fixes. Apparently, if you're using iChat on an unpatched system, "remote iChat participants can send 'links' that can start local programs if clicked." So there you are, iChatting away with, let's say, faithful viewer Richard Casey-Whiteman, when he says, "Hey, click to see a web site with a great picture of Anna Kournikova shucking oysters!!!" And of course, you click, expecting Safari to pop up and show you the comely tennis player perpetrating violence upon a bucket of bivalves-- but instead, TextEdit launches! Noooooooooo!!!

That's... that's it?

Wow. Um, well, technically we can't consider that much of a threat, unless you're in the habit of keeping applications on your hard drive like ReformatStartupDiskWithoutAsking.app. Details of the exploit are understandably absent, but we suppose maybe iChat allowed Terminal to be launched with a command to execute, like "rm -r ~/*" or some other unfun ultra-destructive UNIX ickiness, but we tend to think that Apple-- or someone else-- would have mentioned that. In any case, Apple's fix for this issue was to make such links open a Finder window containing the linked app instead of actually launching it.

So Windows users get a security hole that affects multiple versions of Windows plus several Microsoft applications and lets Wintel users get infected with nasty data-destroying viruses simply by looking at a picture, whereas we get a security update because an iChat buddy can send you a link that will launch Stickies. Oh, the inequity of it all...

 
SceneLink (4929)
And Now For A Word From Our Sponsors
 

As an Amazon Associate, AtAT earns from qualifying purchases

 

The above scene was taken from the 9/17/04 episode:

September 17, 2004: Wal-Mart starts selling iPods, even though they're not compatible with Wal-Mart's own music store. Meanwhile, the UK indie labels who dragged their feet and only signed iTMS contracts weeks ago are wondering why their music isn't online yet, and Apple patches a security hole in iChat that has dire consequences

Other scenes from that episode:

  • 4927: And They're Sold Out, Too (9/17/04)   Ever since it became clear that the "Apple iPod from HP" only differs from the classic Apple version by having different support coverage, Windows-oriented packaging, and an additional logo on its back, you may have been wondering why it even exists...

  • 4928: Wait... Wait... Wait... HURRY! (9/17/04)   Honestly, we don't mean to bag on the British, but if Apple really did have some sort of grudge against them a few years back, we're starting to understand why. Consider just how many of Apple's recent and ongoing woes have originated in the UK; the biggest is probably the Beatles lawsuit, which unspecified legal sources claim might result in Apple having to cough up the biggest non-class action settlement ever...

Or view the entire episode as originally broadcast...

Vote Early, Vote Often!
Why did you tune in to this '90s relic of a soap opera?
Nostalgia is the next best thing to feeling alive
My name is Rip Van Winkle and I just woke up; what did I miss?
I'm trying to pretend the last 20 years never happened
I mean, if it worked for Friends, why not?
I came here looking for a receptacle in which to place the cremated remains of my deceased Java applets (think about it)

(1285 votes)
Apple store at Amazon

As an Amazon Associate, AtAT earns from qualifying purchases

DISCLAIMER: AtAT was not a news site any more than Inside Edition was a "real" news show. We made Dawson's Creek look like 60 Minutes. We engaged in rampant guesswork, wild speculation, and pure fabrication for the entertainment of our viewers. Sure, everything here was "inspired by actual events," but so was Amityville II: The Possession. So lighten up.

Site best viewed with a sense of humor. AtAT is not responsible for lost or stolen articles. Keep hands inside car at all times. The drinking of beverages while watching AtAT is strongly discouraged; AtAT is not responsible for damage, discomfort, or staining caused by spit-takes or "nosers."

Everything you see here that isn't attributed to other parties is copyright ©,1997-2024 J. Miller and may not be reproduced or rebroadcast without his explicit consent (or possibly the express written consent of Major League Baseball, but we doubt it).