Bash

OverviewWe have developed a methodology of managing enterprise and/or shared environment unfriendly applications that has evolved over the years at the Marriott Library or other locations on campus that we support. We affectionately call it the  “Crappy App” model which we use sanitize applications with exceptional requirements.These requirements include:Application has insecure permissions Application has hardcoded variables...

Inside the standard iTunes 12.7 installer is a postinstall action script “startFpsdDaemons.sh” that has some issues that cause issues with tools like AutoDMG. This blog post outlines the issue and a fix to resolve the issue, with notable OS code names references, and links to community open radar and Apple Bug Reporter numbers....

OverviewThis is a OS X GNU Bash Installer for OS X 10.5 to OS X 10.10 that addresses the Bash vulnerability, also know as Shellshock. Since Apple has released security updates for OS X Lion (version 10.7), OS X Mountain Lion (version 10.8) and OS X Mavericks (version 10.9) and newer OS X operating systems...

OverviewShellshock, also known as Bashdoor, is a family of security bugs in the widely used Unix Bash shell, the first of which was disclosed on September 24th, 2014. Many Internet-facing services, such as some web server deployments, use Bash to process certain requests, allowing an attacker to cause vulnerable versions of Bash to execute arbitrary...