Existing users, 
It might be useful to read this article before considering installing PA.
Essentially, all you have to do is disable a few URL types (and apply the Apple security update) and you get the same protection as this haxie, without the risk and overhead of running a haxie.
Don't get me wrong. I think these guys make solid apps, but the fact is that their haxies depend on a lot of magic to manipulate *running* applications. Magic that _can_ cause instability under the right circumstances. It's not Unsanity's fault this is so, it just is.
in a nutshell, I've disabled the bad URL types (disk, disks, telnet and afp) and pointed another at a non-terminal app (ftp) and none of the demonstration exploits effect me. This haxie does not give you any additional protection.
A decent reference on this whole URL saga - Lou Zer
Actually, this haxie does give you more protection than just disabling the protocols you mentioned. First of all, you have to keep up to date on whether any more URIs are problematic and make sure you handle those. Second, this also lets you know of any program or link trying to run a potentially non-safe URI, or even just a URI you may not want it to run.This software gives the user tighter control over what gets run. Its similar to Little Snitch, in the sense that it lets you control what runs when (or what connects to the internet when, in the case of Little Snitch). Some people actually like that type of control.
Reply to This
Tuesday, May 25 2004 @ 10:12 PM PDT