buffer

Purge the OS X disk cache to analyze memory usage

The memory in your system, commonly referred to as RAM, is the work space the system uses to store executable code and loaded data. If your system is slowing down then you may be low on RAM. Although you can install more or free some up by quitting some running programs, first it may help to analyze how much RAM your programs actually are using.

If you open up the Activity Monitor utility on your system and go to the Memory section, you can see a pie chart of the system's physical memory usage, where generally the larger the … Read more

Zone defense

TrustWare's BufferZone Free takes a "proactive" approach to Internet security by isolating your browsing activity and personal data in a "Virtual Zone" that excludes all existing and potential threats, even "zero-day" threats that haven't yet been added to antivirus updates. BufferZone doesn't require regular updates, and it doesn't replace your antivirus, firewall, and other security tools. It adds an additional layer of protection by buffering your computer's connections to potential threats. It supports all major browsers and messaging tools as well as other popular software. However, the free version … Read more

The 404 793: Where Wilson's back with a vengeance (podcast)

The Bubble Boy gets released from quarantine and joins us back on today's episode of The 404, where we're chatting about Dish Network grabbing Blockbuster for $228 million; a Canadian service that could mean the end of missed packages; a girl who can't close her mouth; and the end of one of our favorite TV shows: "30 Rock."

The 404 Digest for Episode 793

Dish Network wins bidding war for Blockbuster Video. The BufferBox may signal the end of missed packages. Just for fun, here's the delivery guy spoof scene from "Ace Ventura: Pet Detective." Nurse uses Popsicle sticks to reset a jaw in mid-yawn. News anchor falls for Shock Top app prank. "30 Rock" will end next season, according to Alec Baldwin.

Episode 793 Subscribe in iTunes (audio) | Subscribe in iTunes (video) | Subscribe in RSS Audio | Subscribe in RSS Video… Read more

Buffer overflows: Reasons to apply mundane-sounding software fixes

Many times when updates or security patches appear for the OS or applications, a common reason for the update is that an attacker can make the program execute arbitrary code, usually by tricking a user into opening a "maliciously crafted" file, be it for a document, a movie, or an elaborate Web page containing scripts and images. This wording has come to sound rather mundane and uninformative to many users, who usually just install the available patches without having an idea of what is going on.

The programming language used for writing most OS X programs is Objective-C, … Read more

Wrapping up Speeds and Feeds, part 2: Reliability

Personal computers have become much more reliable over the last 10 years or so, mostly due to the introduction of advanced operating systems with memory protection and hardware abstraction. The hardware itself has gotten better too; uncorrectable random errors are rare in PCs and extraordinarily rare in server-class systems.

These and other improvements have largely eliminated machine crashes. Blue-screen errors on Windows and kernel panics in Linux and Mac OS X still occur, but much more rarely.

Error-reporting services have become common, helping software developers figure out what went wrong. Most large developers now issue regular patches to fix newly … Read more

QuickTime and iTunes DoS exploit released

A serious new flaw was disclosed on Thursday that affects the latest versions of Apple's QuickTime and iTunes applications.

The National Vulnerability Database entry CVE-2008-4116 describes a heap-based buffer overflow vulnerability within Apple's QuickTime 7.5.5 and iTunes 8.0 programs.

To infect a computer, a maliciously coded long-type attribute within a QuickTime tag might be placed on a Web page, or within a .mp4 or .mov file. This could allow remote attackers to crash the applications (known as a denial of service) or possibly execute arbitrary code on a compromised computer.

The announcement comes one week … Read more

iPod Touch update addresses DNS vulnerabilities

On Tuesday, Apple released iPod Touch version 2.1 to address several security issues. Among them are the DNS vulnerabilities first reported by Dan Kaminsky of IOActive in July. Other issues include vulnerabilities in Webkit, CoreGraphics, and the Application Sandbox.

Earlier on Tuesday, Apple released updates to its QuickTime media player.

Apple notes that this update is only available through iTunes as part of the iPod Touch updating process and will not appear in your computer's Software Update application, nor can it be found on the Apple Downloads site.

Application Sandbox This patch affects users of iPod Touch v2.… Read more

QuickTime update includes 9 security patches

Apple on Tuesday released QuickTime 7.5.5, a version that includes nine security patches, some of which could lead to denial of service or allow an attacker to run code on a compromised machine. The patches cover both Windows and Mac OS X versions of QuickTime. Earlier Tuesday, Microsoft released two bulletins addressing serious vulnerabilities in its Windows Media Player.

QuickTime 7.5.5 may be obtained from the Apple Software Update application or you can download the latest version of free Quicktime player here.

QuickTime 1 This patch affects users of Windows Vista, XP SP2, and SP3. The … Read more

Apple TV gets a security update

Apple released a security update on Thursday for its Apple TV. Version 2.1 includes six patches that address buffer overflow and arbitrary code execution vulnerabilities.

Apple TV 2.1 can be automatically downloaded when the update is detected by the Apple TV device. The patches may take up to one week to be detected, depending on the day a device checks. A manual update can be accomplished by using the TV interface and selecting Settings > Update Software. This update will not appear in your computer's Software Update application or in the Apple Downloads site.

Here's an … Read more