WebSTAR Update Patches Vulnerabilities -- 4D, Inc. has released version 5.3.3 of its 4D WebSTAR Web, email, and FTP server suite to address reported vulnerabilities and add other enhancements. The update is free to all licensed WebSTAR V owners. WebSTAR versions 5.3.2 and earlier have a stack overflow vulnerability in their FTP service that could allow an attacker to gain administrative privileges by sending a long FTP command; a sample script included with WebSTAR could allow directory indexing of any directory on the server; and the Web server component could allow an attacker to download the php.ini files that might contain sensitive information such as the account name and password used by PHP to communicate with databases. All WebSTAR server administrators should update their servers to the latest version. 4D says the upgrade also offers improved spam filtering, with the addition of IP address whitelisting and the capability to filter messages pre-tagged with SpamAssassin headers. [MHA]
- LaunchBar 6.3
- Final Cut Pro X 10.2, Compressor 4.2, Motion 5.2
- OS X Yosemite 10.10.3 Supplemental Update 1.0
- DEVONagent Lite, Express, and Pro 3.9.1
- FileMaker Pro 13.0.9
- iTunes 12.1.2
- GraphicConverter 9.6.1
- 1Password 5.3
- Security Update 2015-004 (Mountain Lion, Mavericks)
- Safari 8.0.5, 7.1.5, and 6.2.5
Syslogd Overwhelming Your Computer?
If your Leopard (Mac OS X 10.5) system is unexpectedly sluggish, logging might be the culprit. Run Activity Monitor (Applications/Utilities/ folder), and click the CPU column twice to get it to show most to least activity. If syslogd is at the top of the list, there's a fix. Syslogd tracks informational messages produced by software and writes them to the asl.db, a file in your Unix /var/log/ directory. It's a known problem that syslogd can run amok. There's a fix: deleting the asl.db file.
Launch Terminal (from the same Utilities folder), and enter these commands exactly as written, entering your administrative password when prompted:
sudo launchctl stop com.apple.syslogd
sudo rm /var/log/asl.db
sudo launchctl start com.apple.syslogd
Your system should settle down to normal. For more information, follow the link.