Opener and Hardening the Mac

There has been much wide-eyed hysteria on the Mac sites concerning "opener". While the comments on these sites have generally been on top of it, the news continues to spread calling it a virus or trojan horse. Check out themacintouchstory that broke it.

To clear up the confusion, opener is ashell scriptthat does a lot of little insidious things to your OS X box, including dumping your passwords from netinfo and trying to crack them. This script requires an administrator password to be installed, so the level of threat it poses is relatively small.

To be clear here, this is not a virus or a trojan horse. It does not self-replicate, or masquerade as another application to be installed. This is not to say that someone couldn’t package it up and make it look official, but it has not currently gotten that far.

At present, this is purely a security issue. You shouldn’t run applications that ask for an administrator password without being sure of the source you obtained them from. You shouldn’t allow administrators on your machine that you do not implicitly trust. You should not use the same password for your login on your computer that you use for networked systems. You should not allow physical access to your computer to someone you don’t implicitly trust. Passwords should be changed regularly.

Good security policy is a pain in the ass to maintain, but if you want a secure environment, you must maintain it.

Posted by Joe Mullins at October 25, 2004 10:16 AM |TrackBack