A programming glitch in Apple's OS X operating system is making it hard for Mac users to tell their computers not to trust digital certificates, exacerbating an ongoing security problem with a Dutch certificate authority that was recently hacked.
A bug in the module for authenticating (Open)LDAP under Mac OS X 10.7.x Lion can result in any password being accepted during log-in – all that's required is a valid user name. The problem occurs when logging in both via a graphical interface on a client and over the web via SSH on a server.
Apple on Tuesday released Mac OS X 10.7.1, its first security and maintenance update for the newly released Lion operating system, with improved Wi-Fi reliability and resolutions for issues related to HDMI and optical audio output.
The update is available through Software Update and is a 17.4MB download. Apple recommends that all users running OS X Lion update to the latest version. Changes in Mac OS X 10.7.1, according to Apple, include:
If you use an iPad or iPhone then you will be familiar with the way in which the Launchpad – an important new element of Mac OS X Lion – affords control over apps on your computer.
Just as an iPad will display a view of all your applications as icons, so the Launchpad echoes the iPad home screen and allows you to create folders by dragging icons together and discard them when necessary.
What do you do if you purchased Lion from the Mac App Store, have no installation disc or USB key, and are suddenly faced with a hard drive catastrophe? In lieu of begging Apple for your very own Lion recovery drive, you can now run Apple's Lion Recovery Disk Assistant. The tool, released Monday, allows users to create a Lion recovery partition on an external drive in the event of a hard drive crash.