新华网2月24日电 据美国科技博客Gizmodo报道,苹果最近刚刚修复了iOS上的一个重要安全漏洞,但是相同的漏洞在OS X上同样存在。在苹果发布补丁之前(据说“非常快”),你最好避免在公共WiFi上使用一些应用。
下面的清单来自独立安全研究员阿什坎·索塔尼,自从上周发现这一漏洞后他一直在紧密关注。简而言之,在咖啡馆、机场等公共网络上使用以下OS X应用容易使你收到“中间人攻击”,坏人可以窃听你与访问的网站服务器之间的任何信息。
除了Safari之外,根据索塔尼的发现,你还要避免在共享网络上使用应用:
Calendar
Facetime
Keynote
iBooks
Software Update
这并不是完整的清单,只是他发现的那部分而已。我们会继续更新这个清单,直到苹果发布OS X补丁为止。你在家里的安全网络上使用这些应用仍然是安全的,但是下次带着电脑去星巴克上网的时候,不要用它们发送敏感信息。
译者:林杉
百度新闻与新华网国际频道合作稿件,转载请注明出处。
The OS X Apps Affected by Apple's Unpatched Security Flaw
While Apple recently patched a major security flaw for iOS, the same vulnerability continues to affect OS X. Until Apple releases a fix—which it says will come "very soon"—here are some of the apps you should avoid using on public Wi-Fi.
The list comes from independent researcher Ashkan Soltani, who has been at the front of this issue since it first broke late last week. You can read more about the security flaw here, but the short version is that using these apps on OS X in a shared network—in a coffee shop or airport, for instance—leaves you susceptible to a "man in the middle" attack, in which bad guys can eavesdrop on whatever information you are relaying to and from the servers of the sites you're visiting.
In addition to Safari, according to Soltani's findings, you should avoid using the following on a shared network:
Calendar
Facetime
Keynote
iBooks
Software Update
That's not to say this is a complete list; it's just what he's dug up so far. We'll continue to update as necessary, or at least until Apple releases its OS X fix. Again, you're fine using these on your secure network at home. Just maybe don't send any sensitive information through them the next time you bring your MacBook to a Starbucks.
(原标题:Safari等OS X应用存在与iOS相同安全漏洞)
热门跟贴