Technology news and Jobs 
Information Technology News What Apple should do to make Leopard more secure
Information Technology News What Apple should do to make Leopard more secure | What Apple should do to make Leopard more secure |
|
| by Stuart Corner | |
| Sunday, 09 March 2008 | |
|
Page 1 of 2 Components of an application 'bundle' could include multiple executables for different platforms such as Classic Mac OS, PowerPC or Intel-based computers, multiple language files so that a single copy of the application bundle can be used in different countries and appear in the native language of that country, graphics, buttons and media resources used within the application and help files, manuals, etc. According to the White Paper, "The structure of the bundle architecture makes it easier to piggyback executable code within an existing trusted application by simply renaming the existing executable [eg] iTunes found in the [applications folder] and inserting a second executable into the [applications] folder with the original's executable name. When the user executes the bundle (in this case iTunes.app) the virus code would execute instead. The virus would then launch the renamed iTunes executable so that the user would not be aware they had run the wrong program." Mac OS X also makes use of the bundle architecture for storage of user documents in many modern applications such as iMovie, iDVD, and the many pro tools. These bundles typically have their file extension marked invisible so, the white paper says, "it is possible to disguise an executable program as a data 'file' for such a tool. These bundles can open both their own malware code as well as the desired real application whilst conserving the look and feel of the real data." CONTINUED |
| < Next story in category | Previous story in the category > |
|---|
