Thoughtful, detailed coverage of the Mac, iPhone, and iPad, plus the best-selling Take Control ebooks.

 

 

TidBITS Watchlist
 
Set Your Default Printer

If you print mostly to a single printer, make sure it's selected in the Print & Fax preference pane's Default Printer pop-up menu.

Share your own tip! | Search TipBITS

 

 

Recent TidBITS Talk Discussions
 
 
Watchlist | 21 Sep 2010 | Print Printer-Friendly Version of This Article | Comment (4)

Security Update 2010-006

by Lex Friedman Send Email to Author

Apple has released Security Update 2010-006, an update exclusively for Macs running Mac OS X 10.6.4 Snow Leopard. The update corrects a vulnerability in AFP Server, which manages file sharing. In certain situations, a remote attacker who knew a valid username on your Mac could log in without knowing the password, and access folders shared via AFP. Apple recommends everyone running 10.6.4 - both the desktop and server versions - install the patch, which is available via direct download or Software Update. (Free, 1.93 MB)

 

MacTech Conference, for IT Pros and Apple developers, is Nov 3-5,
in Los Angeles. The 3-day event is packed with sessions & evening
activities. Learn from the best. Meet and spend time with peers.
TidBITS readers save $50 at <http://macte.ch/conf_tidbits>!
 

Comments about Security Update 2010-006

To leave a comment, click Add a Comment and then enter the text, your name, and your email address (which won't be displayed). Your comment will appear after you follow a link in the one-time confirmation message we send to verify that you're a real person.
Add a comment
Bob McAteer2010-09-21 07:47
Link to Security Update 2010-006 from MacSurfer not working.
Reply
Ernst Mulder2010-09-21 23:18
Some thoughts. Appe states on its download page that this security update includes previous security updates, which isn't true 2010-005 was over 80MB and this update weights only 2MB and only updates AppleFileServer and its man page. Also, does anyone know is this update the same for Snow Leopard and Snow Leopard Server?
Reply
Adam Engst2010-09-22 05:55
That comment about the previous security updates being included is only on the outer listing page for the download, so I strongly suspect someone just copied and pasted from a previous description and didn't delete it.

As far as Server goes, the description of the security changes specifically says it's available for Snow Leopard Server, and there's only one download, so I think it's safe to assume that it's the same. Generally there are separate downloads when the Server changes require fixes to Server-only components.
Reply
Jonathan2010-09-23 05:29
Anyone else having login problems after installing this update?
Reply