蘋果mac 連線伺服器_每日新聞摘要:蘋果從Mac移除Zoom的Web伺服器
蘋果mac 連線伺服器
Earlier this week, a security researcher disclosed an exploit showing that websites could use Zoom’s video chat software to start your webcam and record without your permission. Now Apple is removing Zoom’s web server from all Macs automatically.
本週早些時候,一位安全研究人員披露了一個利用漏洞,該漏洞表明網站可以使用Zoom的視訊聊天軟體來啟動您的網路攝像頭,並在未經您許可的情況下進行錄製。 現在,Apple正在自動從所有Mac中刪除Zoom的Web伺服器。
Zoom, a video chat service wanted to provide convenience. It designed its software to join a video chat and start your webcam just by clicking on a link. But then Safari, Apple’s browser, released an update to prevent exactly that behavior.Instead, you would confirm that you wanted to start your webcam.
想要提供便利的視訊聊天服務Zoom。 它設計了其軟體來加入視訊聊天並僅通過單擊連結即可啟動網路攝像頭。 但是隨後,Apple的瀏覽器Safari釋出了一個更新,以完全防止這種行為。 相反,您將確認要啟動網路攝像頭。
So Zoom decided to work around that problem and installed a local web server on Macs that could bypass the security check, in the name of convenience. That entire concept is problematic, and
因此,Zoom決定解決此問題,並以方便的名義在Mac上安裝了可以繞過安全檢查的本地Web伺服器。 整個概念都是有問題的,而且正如喬納森·萊茨丘(Jonathan Leitschuh)所展示的那樣,壞演員可以輕鬆地建立一個網站,該網站可以自動將您加入通話並啟動網路攝像頭。
Worse yet, uninstalling Zoom from your Mac doesn’t remove the web server. Which meant it was easy to force a reinstall of the software, again without your permission.
更糟糕的是,從Mac上解除安裝Zoom不會刪除Web伺服器。 這意味著很容易在沒有您允許的情況下強制重新安裝該軟體。
Zoom promised to make changes and apparently, Apple stepped in to help. Apple released a silent update that removes Zoom’s web server from your Mac. The process is automated, and you won’t need to do anything. That should keep anyone who likes Zoom safer on MacOS. However, the autojoin feature still affects Windows. [TechCrunch]
Zoom承諾做出改變,顯然,Apple介入了。 蘋果釋出了一個無聲更新,該更新從Mac刪除了Zoom的Web伺服器。 該過程是自動化的,您無需執行任何操作。 那應該會讓喜歡Zoom的人在MacOS上更安全。 但是,自動加入功能仍會影響Windows 。 [ TechCrunch ]
在其他新聞中: (In Other News:)
Microsoft’s latest Insider update includes passwordless sign-in:Microsoft is moving forward with Insider testing, and the latest update includes some interesting additions. In addition to expanding Your Phone to work with more Surface devices, the company is testing a new passwordless sign-in option. It essentially forces all Microsoft accounts on a PC to use Windows Hello, which should make login a little smoother. [Microsoft]
Microsoft的最新Insider更新包括無密碼登入: Microsoft正在推進Insider測試,並且最新更新包括一些有趣的功能。 除了將您的手機擴充套件為可與更多Surface裝置一起使用外,該公司還在測試新的無密碼登入選項。 從本質上講,它會強制PC上的所有Microsoft帳戶使用Windows Hello,這將使登入更加流暢。 [微軟]
A former Tesla employee admits uploading source code to iCloud: Guangzhi Cao, a former Tesla engineer, left the company to work for Chinese EV startup Xiaopeng Motors. He worked in Tesla’s Autopilot division, and before he left uploaded Autopilot source code to iCloud. Tesla has accused him of stealing the code to take to his new company, although Xiaopeng Motors denies any knowledge of the theft. Cao claims he deleted all the files he uploaded to the cloud. [The Verge]
特斯拉前員工承認將原始碼上傳到iCloud:特斯拉前工程師曹光志離開公司,為中國電動汽車初創公司小鵬汽車工作。 他曾在Tesla的Autopilot部門工作,然後才將Autopilot原始碼上傳到iCloud。 特斯拉(Tesla)指控他竊取了將密碼帶給新公司的程式碼,儘管小鵬汽車否認有任何關於盜竊的知識。 曹聲稱他刪除了所有上傳到雲中的檔案。 [邊緣]
Microsoft is closing Remix3D.com later this year:Microsoft is retiring Remix3D.com on January 10, 2020. The company introduced the site as part of a 3D push in its Windows 10 Creators Update. Much like TVs, 3D in Windows never took off, and now it seems to be winding down slowly. [Thurott]
微軟將於今年晚些時候關閉Remix3D.com:微軟將於2020年1月10日淘汰Remix3D.com。該公司在其Windows 10 Creators Update中作為3D推送的一部分介紹了該網站。 就像電視一樣,Windows中的3D從未起飛,現在看來它正在慢慢消失。 [圖洛特]
Pale Moon browser’s older download versions infected with malware: Pale Moon, a fork of FireFox, announced that hackers breached its archive server. The server provided links to older versions of the browser, and the hackers added malware to those downloads. The goal seems to be stealing your cryptocurrency. Chalk it up to another reason not to use a Firefox fork. [ZDNet]
Pale Moon瀏覽器的舊下載版本感染了惡意軟體: FireFox的分支Pale Moon宣佈黑客破壞了其存檔伺服器。 該伺服器提供了到舊版本瀏覽器的連結,黑客將惡意軟體新增到了這些下載中。 目標似乎是在竊取您的加密貨幣。 將其歸因於不使用Firefox分支的另一個原因。 [ ZDNet ]
Google shut down the Nest Apple Watch app: Do you useyour Apple Watch to control your Nest thermostat? According to Google, probably not. The company says very few people used the app, and so it removed Apple Watch compatibility in the latest update. [9to5Google]
Google關閉了Nest Apple Watch應用程式:您是否使用Apple Watch控制Nest恆溫器? 根據Google的說法,可能不是。 該公司表示,很少有人使用該應用程式,因此它在最新更新中刪除了Apple Watch相容性。 [ 9to5Google ]
White Hat hackers tried to take down ransomware criminals, but it’s a draw: White Hat hackers tried to use a Denial of Service attack to prevent the spread of ransomware, in a novel approach to a growing problem. They noticed parts of how the ransomware spread and attacked were predictable and tried to take advantage of that vulnerability. Initially, it worked, but the bad hackers just updated the software. Nice try though. [Ars Technica]
白帽黑客試圖清除勒索軟體犯罪分子,但這是一個吸引:白帽黑客試圖以一種新穎的方法來解決日益嚴重的問題,從而利用拒絕服務攻擊來阻止勒索軟體的傳播。 他們注意到勒索軟體的傳播和攻擊方式是可以預測的,並試圖利用該漏洞。 最初,它起作用了,但是壞的黑客只是更新了該軟體。 不錯的嘗試。 [ Ars Technica ]
Apple disabled Walkie-Talkie from the Apple Watch following exploit: Following the disclosure of an exploit, Apple disabled the Walkie-Talkie feature on the Apple Watch. Details are scarce, but it seems with the right set of steps a bad actor could use Walkie-Talkie to listen to your conversations without you knowing. Apple promises to fix the problem and reenable the feature down the road. [9to5Mac]
Apple在利用以下漏洞後從Apple Watch禁用了Walkie-Talkie :在披露了漏洞利用之後,Apple在Apple Watch上禁用了Walkie-Talkie功能。 細節很少,但似乎只有正確的步驟,一個壞演員才能在不知情的情況下使用對講機收聽您的對話。 蘋果承諾將解決該問題並在將來重新啟用該功能。 [ 9to5Mac ]
Forty years ago today, July 11th, NASA’s Skylab space station fell back to Earth.
四十年前的今天,即7月11日,NASA的Skylab空間站墜落地球。
Skylab was the first space station launched and operated by NASA. It only saw use for about 24 weeks, and the station was made up of a modified Saturn Rocket and leftover Apollo hardware.
Skylab是NASA發射和運營的第一個太空站。 它只使用了大約24周,並且該站由改良的Saturn Rocket和剩餘的Apollo硬體組成。
The space station saw problems early and was damaged by the launch to get the rocket into space. As a result, astronauts spent a significant amount of time repairing the station when they first arrived.
該空間站很早就發現問題,並因將火箭送入太空的發射而受損。 結果,宇航員在首次到達時就花費了大量的時間修理該站。
Astronauts did perform experiments aboard the space station, ranging from life science to solar physics. But the main goal was just to prove that humans could live aboard a space station, even if only temporarily. In that way, Skylab paved the way to future space stations like the International Space Station (ISS).
宇航員確實在空間站上進行了從生命科學到太陽物理學的實驗。 但是主要目的只是證明人類可以住在空間站上,即使只是暫時的。 通過這種方式,Skylab為未來的空間站(例如國際空間站(ISS))鋪平了道路。
After NASA decided to stop sending new crews to the station, its orbit slowly decayed before plummeting back to Earth. NASA attempted to control the fall so that the space station would land in the Indian Ocean and avoid harming anyone.
在美國宇航局決定停止派遣新的工作人員到該站後,它的軌道緩慢衰減,然後墜落回地球。 美國宇航局試圖控制墜落,使空間站降落在印度洋上,並避免傷害任何人。
Unfortunately, parts of it did land in Australia, leading the country—and this is true—to fine NASA $400 for littering. [Space.com]
不幸的是,它的一部分確實在澳大利亞降落,導致該國處於領先地位,這確實是對NASA亂扔垃圾罰款400美元。 [ Space.com ]
翻譯自: https://www.howtogeek.com/fyi/daily-news-roundup-apple-removes-zooms-web-server-from-your-mac/
蘋果mac 連線伺服器