Quote: Originally Posted by piracy /System/Library/PrivateFrameworks/DMNotification.framework/Versions/A/Resources/dmnotifyd handles .Mac Notifications (notify.mac.com). Thus t…

E.T. phones home...he misses it.

Quote: Originally Posted by ashtoash Stop being so paranoid, pay for your copy. So one should assume that every person paranoid about Tiger phoning home with information ne…

Quote: Originally Posted by alphasubzero949 So one should assume that every person paranoid about Tiger phoning home with information never authorized by the user has pirated it…

Quote: Originally Posted by Big Mac Impressive detective work (assuming you found all this out yourself). . . I don't think it's detective work... many of us suspect that a…

Quote: Originally Posted by Stradlater Another thing is: when people are worried about phone-home apps from companies they trust, it's usually because they pirated. Or mayb…

Some people don't like their bandwidth or CPU processes being wasted doing things without permission. I don't have .Mac so why would I want my CPU to check the server? No, I don'…

Quote: Originally Posted by nonhuman Or maybe it's because they're worried that the company is heading in a direction where they'll no longer be trustworthy. Vigilance is …

Quote: Originally Posted by piracy /System/Library/PrivateFrameworks/DMNotification.framework/Versions/A/Resources/dmnotifyd handles .Mac Notifications (notify.mac.com). Thus t…

I don't think paranoia is a reflection of theft. Some people are just paraniod (that's... TWO noids). I don't like the idea of my info just being transmitted randomly to anyone Ap…

It has got to do with idisk syncing services. If you allow the change, idisk then shows up on your desktop. I get a bit paranoid too after years of using Windows...

Quote: Originally Posted by larrinski It has got to do with idisk syncing services. If you allow the change, idisk then shows up on your desktop. I get a bit paranoid too after …

First, nothing happend automatically, probably because I have opening of "safe" files turned off in Safari. Second, when one first starts a widget (including this one) Dashboard a…

Lotsa default installs out there, and lotsa users that don't know to change the prefs. Did you read the whole page? I've got a default install of 10.4 going here, and I didn't get…

there a thread about this same issue going on at Ars. Interesting. Could the honeymoon be over? http://episteme.arstechnica.com/eve/...m/200006323731

Quote: Originally Posted by TETENAL So don't download and run anything from a source you don't trust. Also note that the download was initiated by merely clicking a link t…

Dear God; it's ActiveX all over again. No, I'm serious. The whole reason ActiveX is so insecure is that Microsoft insists on auto-opening executable code in the name of convenienc…

Quote: Originally Posted by chris v Warning: the following link will auto-download a widget that will then auto install: http://stephan.com/widgets/zaptastic/ It kills all th…

Quote: Originally Posted by Millennium The only way to close this hole is to remove the feature. Not just "make it an option"; completely remove it. Disable "Open 'safe' fil…

Why would they do that! It's just silly. There should be: 1) A scary warning. 2) You should physically have to move the widget to the widget library (or have a big scary screen say…

You guys didn't hear? They're moving to signed widgets, and you have to buy a Widget Developer's License from Apple get a widget signing key.

Quote: Originally Posted by TETENAL Disable "Open 'safe' files" in Safari and the widgets are not installed automatically. Before a widget is run the first time Dashboard asks. …

Quote: Originally Posted by Millennium You don't understand; the point is that this misfeature gives widgets a mean to self-spread. What could have been a simple Trojan can beco…

Quote: Originally Posted by TETENAL Widgets can not "self spread" because Dashbaord asks the user whether they are allowed to run when they are run the first time. They can only…

I've got the same experience as chris v; most widgets that I've downloaded haven't asked me anything. The exceptions have been when the app contained a binary code, shell script, o…