Mac OS X Security Vulnerability

From: Bob Callaway <callaway_at_socrates.berkeley.edu>
Date: Wed May 19 2004 - 13:28:05 PDT

The following page, titled "Apple Product Security," contains Apple's
policy about announcing security flaws. See the extract below.

      http://www.info.apple.com/usen/security/index.html

====from Apple site===============

Security notifications

For the protection of our customers, Apple does not disclose, discuss
or confirm security issues until a full investigation has occurred
and any necessary patches or releases are available. Apple usually
distributes information about security issues in its products through
this site and the mailing list below.

Mailing list

The Security-Announce mailing list is provided to obtain product
security information from Apple.
You can susbscribe via http://lists.apple.com/

Notifications developed by Apple are signed with the Apple Product
Security PGP key. We encourage you to check the signature to ensure
that the document was indeed written by our staff and has not been
changed.

Updates

Check the Security Updates page for released updates.
===========================

--Bob

At 1:07 PM -0700 5/19/04, Chris Ferreira wrote:
>Important story on an OS X security vulnerability:
>
>http://story.news.yahoo.com/news?tmpl=story&cid=74&e=3&u=/cmp/20040519/tc_cmp/20600174
>
>Does anybody know of a place on the Apple site that posts security
>updates/problems? I looked on the site and haven't found any mention
>on this particular issue. This seems like a relatively important
>security flaw and I am surprised I couldn't find any information
>directly from Apple.
>
>Chris
>
>-----------------------------------------------------------------------------------------------------------
>Chris Ferreira 238 Evans Hall
>Software Distribution Associate 510-643-9725 - phone
>Office Hours: Tues/Thurs 510-643-5385 - fax
> 3:00 - 4:00 products@socrates.berkeley.edu
>
>"If half of the budget is going to military spending, then half as much
>money is going to what it is defending."
> Dilated Peoples
>_____________________________________________________________
>
>
>------------------------------------------------------------------------
>The following was automatically added to this message by the list server:
>
>For information about MAGNet, its meetings and events, and its
>mailing list, including information on subscribing and unsubscribing,
>see the MAGNet Web site at <http://magnet.berkeley.edu/>. 

-- 
-
______________________________________
Bob Callaway               
Manager, Strategic Vendor Relations
Information Systems and Technology
295 Evans Hall
University of California, Berkeley
Berkeley, CA 94720-3812
Voice:  (510) 643-8262      
Fax:  (510) 643-5385         
Email:  callaway@socrates.berkeley.edu
______________________________________
------------------------------------------------------------------------
The following was automatically added to this message by the list server:
For information about MAGNet, its meetings and events, and its
mailing list, including information on subscribing and unsubscribing,
see the MAGNet Web site at <http://magnet.berkeley.edu/>.
Received on Wed May 19 13:29:55 2004

This archive was generated by hypermail 2.1.8 : Wed May 19 2004 - 13:29:55 PDT