Well, do more research before downloading random stuff...

:} In general I don't download much at all that might be dodgy, or at least appear to be. It seemed to have been buried in an RSS feed in the Pubsub folder within the Library folder of the user account and was called FlashBack Trojan Horse 2.0a..... I haven't been a victim of any financial shenanigens and the photos of me and the donkey haven't gone on line :suspect: :), so perhaps it was a wasted effort.



SHJ

http://streamvia.com

£10 for 3months same subscription works on Windows, Mac, Ipad and Iphone

Thanks.

On an unrelated issue, over the last weekend I found I couldn't log-on to Pprune using my MacBook at home using Safari.

When I tried to log-on Pprune came up with an incorrect password error message. I went through the rigmarole of changing it a couple of times, same thing. Cleared out the cache, cookies etc - same problem.

I can log-on fine using Firefox on the same machine, problem is only with Safari. No changes made to the set up between the time it worked and when it didn't.

Any ideas?

You might need to remove a saved password entry for PPrune from Safari's autofill function.

I don't have a Mac, but my landlady has two of their notebooks, and occasionally asks for my help. Recently she had problems with applications such as Safari just not starting at all, so I looked in to it, and I thought I should report what I found in case it helps anyone:

MacBook Pro, about 5 y.o.
OS X Tiger 10.4.11. Yes, I know, and so does she, but her "Mac guy" does that kind of thing. If he can be contacted. I suspect he may be replaced by me at some point in the future.
Microsoft Office 2007 for Mac, up-to-date.

The basic problem had happened before and was known: the hard disk drive was completely full, with 0KB free, and that stops e.g. Entourage from starting with an obscure error about caches. She had previously removed unnecessary applications and archived photos, but it kept happening. To find out where the space was going, I persuaded her to let me open a terminal and run a few commands such as "df" and "du". (I'm a Linux user, and it's all UNIX anyway.)

I found that her Caches folder was taking up a several GB of space, and after some online research, I found that some subfolders could be safely removed. Safari cache, for example. After that and a couple more application removals, there was about a GB free and she could work ... but the disk was thrashing, and we could see the free space dropping like a plane after a bird strike.

More digging commands, and I could see that there was over 1.5GB in an Entourage cache folder. This was an index that Entourage was creating of all her mail. Of which there was plenty, and that was what was filling up the hard drive. It's a setting that Entourage has that indexes mail so it can be found by Spotlight, the OS X indexing system.

She never used Spotlight seriously, she said, so I turned it off in Entourage preferences, and that deleted its index - freeing up almost 2GB of disk in minutes. Then turned Spotlight off entirely and deleted the index (more terminal commands).

So the machine's a lot happier without all that indexing thrashing the disk and filling it up. Turns out that the Entourage Spotlight indexing process is so dumb, it will completely fill up the hard drive to the last byte, which stops Entourage from loading at all. :=

And if anyone wants to tell me I didn't do things "the Apple way", well ... this problem wasn't Apple's fault, and (in any case) I'm not a Mac person, I only care about getting things to work. Sorry ..! :8

* three if you include the PowerMac G3 laptop in the attic!

Thats interesting With just a change of names, you could have been describing the problems with the "Findfast" indexing in Windows 98 !

bnt

Had you been using 10.6, or even better 10.7, you wouldn't have had the majority of problems you've just described. :cool:

Spotlight in particular, for example, has seen major improvements since 10.4 !

Logging onto PPRune with iPad
 

This is interesting, because with my new iPad it will give me the same incorrect password error message when I try to login to PPPune. No other forums are affected, only PPRUNE.

Only on iPad, not on my PC running Firefox.

This appears to have been fixed with this weeks update to Safari, and was caused by a bug in the previous Safari update about 12 days ago :hmm:

Threat to Mac OS.
 

JUST in case you have not seen this.

'Rude awakening' for Mac users as cyber attack infects 550,000 of Apple's 'virus free' machines | Mail Online

PPP

It was always a misconception that a Mac was immune to attacks, it was mainly due to the relatively low numbers not making it worth while for the hacker.

It's still a much better platform from a virus point of view than Windows by a million miles. The chances of you getting infected on Windows remain substantially higher and will remain so for the foreseeable future.

Simple fact of the matter is that you do not need antivirus on a mac if you follow basic maintenance steps and common sense when on the internet. I have checked all my macs for the presence of that virus, on none of which I run an AV, and have not found it.

So can we please take the journalistic hype with a pinch of salt. Yes there is something to be aware of, and yes you should exercise caution (whether using a mac or any other computer). But the fact of the matter is that the underlying security posture of the mac platform remains broadly unchanged, and so the world is not going to end tomorrow !

Anyone else spot the vested interest? :=

I'm not saying that there isn't an element of vested interest, but I for one would hope that AV vendors are those most involved in research and investigation into virus threats, and thus be among the first to discover and publicize them.

SD

Not to mention that 600,000 infected systems would make a nice little bot net.

Antivirus company warns of virus. End user wags finger at "vested interest". Sigh. Sometimes, you have to accept information for what it is: information from a source that might actually have a clue.

In this instance little research was needed as this exploit is not Apple specific, but actually exploits a bug in Java. Apple subsequently rolled out a Java patch on the 2nd of April.

However, yes, worth keeping an eye on the vendors blogs. The F-Secure blog, for example, is quite a good one. Well respected AV vendor and the blog is fairly independent in its writing style.

what it really proves is the need to keep software - and especially operating systems - up to date and fully patched.
Apple actually patched the vulnerability some time ago - the fact that machines are still infested is due to the users failure or inability to install the patch.
And thats a problem that exists with ALL operating systems

So that's just like Windows then. No AV on this box, not needed.

I wouldn't put it quite like that.

You see, whilst OS X's heritage can be readily traced back to BSD UNIX, the same cannot be said for Microsoft Windows.

As a result, as well as being greater in number, the scope of vectors for Windows viruses are deeper too. This somewhat mandates having something running to give you a helping hand in keeping an eye out for things.

If we take the rather nifty example of the infamous Duqu. That was delivered in a Microsoft Word document (although could have easily been any other document format supporting embedded fonts, e.g. a PDF File) that used the Microsoft Windows font parsing engine as a vector for remote code execution.

This gives you an idea of just how on the ball you need to be if you're planning to run windows without AV (although admittedly, Duqu is not the best example from an AV point of view... but that's because it's said to be written somewhat more competently than your average virus).

So that's just like Windows then. No AV on this box, not needed.

I've just handed back to the customer today a Windows machine that "didn't need antivirus". It was given to me to sort out because all the files on the single hard drive had vanished. The machine would still boot into windows, but that was it. No A/V on it because ";it had never been needed".

So what did I find?
1) A rootkit
2) The entire contents of the drive had a "superhidden" attribute set - this had to be removed (tedious)
3) The entire contents of the drive had all user permissions and ownerships removed - so blocking access. These had to be restored
4) The entire drive contents also had the "hidden" attribute set - this had to be unflagged before any more checks could be done
5) Now a number of restrictive policies appeared whiich blocked file access - these had to be removed
6) the next stage found another rootkit, trojans, keyloggers and a couple of browser hijacks. By now I could get at her files (research thesis and supporting docs) back these up and finally nuke the machine. A tedious and expensive job, which cost the customer dearly. And she found the hard way that Windows computers DO need antivirus software.


And before anyone asks, no the contents of the drive were not visible under Linux. I booted the machine with Knoppix and nothing was visible.

I imagine that your customer did not follow the "if" part of mixture's post ("if you follow basic maintenance steps and common sense when on the internet") and had only picked up on the "then" part (then you don't need AV).

(I do have AV on the laptop which sometimes connects to the internet without going through a stealth mode NAT router, or at least not one under my control. Using a stealth mode NAT router which I trust, with only trusted boxes on my side of it, counts as "common sense when on the internet" to me.)

I'd imagine too that the 'average' Windows user is actually more security aware than the 'average' MacOS user, it is certainly the case in my circle of family/friends/colleagues etc.

I wonder how much of that is down to Apple telling everyone that they don't need to think about security?

A good Mac anti virus is MacKeeper. But Apple are releasing their own Mac anti-virus this summer.

Never had a virus on my Mac though. Never used Safari, but Chrome does a pretty good job of not letting you access websites that could possibly be infected like in the report.

Again, because of the numbers involved. Same as with Android phones v iPhone (or Windows phone, or Bada, or what Symbian exists nowadays). Quantity of users is the biggest draw, as well as the open source OS.



Simple fact is that at least 500,000 mac users don't have that common sense approach and, honestly, would be the same as windows users who think that the AV that came supplied with their PC is all they need and have never updated something that was only good for 3 months. As the number of users grow, along with the "users" that should have a keyboard lock fitted and only bought the Apple as it's "fashionable", that proportion will grow and lead to something even more attractive to those with bad intentions.

This ain't the first virus on a Mac OS, and it certainly won't be the last. Your "Windows Experience" is on it's way.

Loading a new I pad??
 

Hi

I have a brand new I pad, and want to load some manuals that are on disc and on my laptop.

I have tried to transfer them to the I pad by sending them as E mail attachments. On arrival it is easy to open and view them, but no options to store them.

The guy in the Apple store said all I should do was down load the I Books app and it would give me the chance to store the manuals there. It does not!!

These manuals are in pdf format, and no, I do not want them stored in 'The Cloud' any more than I want them in my garden shed.

While I have Apple experts attention a second question, a clever guy sold me a Bamboo Stylus with lots of talk of how good it is. It came with a 'quick start guide' which tells me how to personalize it,that it works with an I pad, its spec and a address of their web site but no clue as to how to use it. The web site tell me in glowing terms how good it is, but still no clue how to use it. The box suggests downloading the 'Bamboo Paper' app, can't find it. The guy in the apple store says it does not do anything.

Why does anyone have a stylus?

390

I can highly recommend GoodReader for reading PDF and other docs on the iPad. It also reads big files very nicely.

ipad
 

I like Perfect Reader.
To save your PDFs just tap the screen and in the top right will be options for saving to various apps/places.

external Cd drive
 

Hi

You can get an external cd/dvd drive to connect to the ipad to load stuff.

regards

Mark

If you install the Apple iBooks app (free), the Mail app will include the option to transfer the PDF to iBooks when you open them. Once in iBooks, they stay on the bookshelf.

I always used iAnnotate for reading my .pdf ops manuals.......more than happy to show you next time I see you MB ?! Or give me a call !

F/o

Not quite. What hasn't been pointed out is that this is NOT a virus, it's a trojan horse. To be infected you have to go to a suitably infected website, be asked to 'update' or download the Flash plug-in, accept that request, ignoring the fact that you haven't gone to the Adobe website, and download and install the plug-in, ENTERING YOUR SYSTEM PASSWORD to do so.:ugh:

You are quite right, there always have been Mac 'viruses' and there will be more, but the Mac is still by miles the safest way to connect to the internet, and probably always will be.

The next major MacOS system update (OSX 10.8) will make life even harder for the hackers... Gatekeeper

Nige, I thought the later iterations of FlashBack didn't actually need the password?

That's a new one on me, I've never installed it...!

The point remains, don't install software or updates on a request from a website... Mac or PC!

Got it !!!
 

Thanks to everyone who made good suggestions.

The end result was a modified version of the solution from MacBoero and indeed 'the guy in the Apple store'.

The modification was after opening the PDF to push 'Open in Safari',
once opened in safari there is an option to send to I books.

I failed in all attempts to go direct.

390

That's odd. The iPad must behave differently to the iPhone then, because I have just checked the iPhone mail app again and once you open a PDF attachment, you can hen send it to iBooks. Safari is not involved.

I've just checked on my iPad and if you touch and hold the preview of the PDF in the email and a pop up menu appears with:
Quicklook
Open in "iBooks"
Open in...

Dear Girtrude
 

Just to clarify your post re Stealth routers - I take that to mean that your router does not actively block ports but instead does not reply to uniniated incomming requests - If so I'm doing the same.

I think that the Mac community (and linux in time) will have to follow the same precautions that Windows users have done in the last 10 years or so.

To anyone reading this: there are sites that check the stealth status of your router (that's not the same as your computer by the way) - try putting "checking the stealth status of your home router" into any of your favorate search engines (without the quotes).

The resuls may require a bit of work to clarify but you will be a happy user in the long run.

I have learned the hard way.

CAT III

CATIII-NDB,

You can also set up the Mac to operate in stealth mode. Have a nosy around your system preferences.