Monthly Archives: February 2010

Pre-order professional Mac security books!

Posted on 2010-02-25 by Graham

You too can own a piece of the magic. Professional Cocoa Application Security and Enterprise Mac: Mac OS X Snow Leopard Security are both already in pre-order; use the Amazon affiliate links below if you want to give me a … Continue reading →

Posted in PCAS | Leave a comment

Look what the feds left behind…

Posted on 2010-02-22 by Graham

So what conference was on in this auditorium before NSConference? Well, why don’t we just read the documents they left behind? Ooops. While there’s nothing at higher clearance than Unrestricted inside, all of the content is marked internal eyes only … Continue reading →

Posted in Data Leakage, government, NSConf, Policy, Privacy | Comments Off

More NSConf code signing fun

Posted on 2010-02-21 by Graham

I’ll be talking at the US NSConference on Tuesday, with an extended version of my talk on code signing. I’ll cover how it works, what it does, what it doesn’t do, and what it should do. Importantly, there are still … Continue reading →

Posted in Codesign, Encryption, iPad, iPhone, Mac, NSConf, Talk | Comments Off

iPh0wnage

Posted on 2010-02-15 by Graham

I just reviewed a blog post I wrote for Graham Cluley a while back, in which I looked at the impact a common vulnerability on the iPhone and Mac would have. I think in the run-up to the iPad’s release, … Continue reading →

Posted in iPad, iPhone, Mac, Malware | Leave a comment

Anatomy of a software sales scam

Posted on 2010-02-11 by Graham

A couple of days ago, Daniel Kennett of the KennettNet micro-ISV (in plain talk, a one-man software business) told me that a customer had fallen victim to a scam. She had purchased a copy of his application Music Rescue—a very … Continue reading →

Posted in Phishing, Scam | 1 Comment

Code snippit from NSConference presentation

Posted on 2010-02-11 by Graham

Here’s the code I used to display the code signature status within the sample app at NSConference. You need to be using the 10.6 SDK, and link against Security.framework. #import <Security/SecCode.h> – (void)updateSignatureStatus { SecCodeRef myCode = NULL; OSStatus secReturn … Continue reading →

Posted in Codesign, NSConf, Talk | Leave a comment

On multitasking

Posted on 2010-02-09 by Graham Lee

TidBITS unwittingly hits the nail on the head while talking about iPad OS multitasking (emphasis added): It’s easy to imagine wanting to use an iPad to read text in Mobile Safari, copy some text to a Pages document, and send … Continue reading →

Posted in iPad, iPhone, rant, usability | 4 Comments

Oops. (updated twice)

Posted on 2010-02-05 by Graham

Q: What caused this? A: this. A Vodafone employee used the corporate Twitter account to post the message: [@VodafoneUK] is fed up of dirty homo’s and is going after beaver And as the Vodafone apology attests, this was no hacking … Continue reading →

Posted in Policy, Twitter | 1 Comment

Core Data Haiku competition results!

Posted on 2010-02-04 by Graham Lee

I was sent a review copy of Core Data: Apple’s API for Persisting Data on Mac OS X by Marcus Zarra. The problem is that I already own a copy. So I held a Core Data Haiku competition on Twitter; … Continue reading →

Posted in whatevs | Leave a comment