safari public beta

come from Apple.

No need to be concerned about Malware.

Spotlight does not search everywhere. It ignores the library and other places like that and concentrates on your home folder, sans library.

Take a look in the Library, not the one in your Home folder, and look inside the Receipts folder. You "may" find a reference to Safari 4 in there.

P

Where is library?

There is a mention of library except in i-disk and it says access requires being on new which I am - but which it does not seem to recognise.

My concern about malware is not about the update - but that malware is restrictoing me from downloading.

Cut a long story short I am thinking of upgrading to Leopard - will new system software get me past this stuff.

two of them.
One located at the root of the hard drive and the other is in your Home folder.

There is currently no malware that would prevent you from downloading anything.

Upgrading to Leopard will probably not get you past this "problem" as the system will still think that you need updates to Public Beta. Are you absolutely sure that you have never downloaded Safari public Beta?

Once again, Take a look in the Library, not the one in your Home folder, and look inside the Receipts folder. You "may" find a reference to Safari 4 in there.

P

re same issue - thanks for that - its driving me nuts. I've already got safari beta 4. The update is 19.1 MB - yeah? My concern is that THere is nothing to say that the download is being overridden. Let me know if you happen on a solution.

I was going to raise the same issue here myself. When this update was new, on May I6th, I installed it immediately and since then I have been plagued by Software Update telling me to download it. I went to check Safari immediately and the Get Info given was it had last been changed on May 16th!! So the first update attempt definitely was registered as having occurred. I never downloaded it again as I was afraid some malware or Govware producer might have found out how to use Software Update as a tool for setting Trojans. I too have Tiger 4.11 with an Intel iMac. Is it possible to tell anything from the About Safari menu? It says "Version 4 Public Beta (4528.17)".
I was particularly suspicious as a similar update problem had happened the previous month with MS Office for Mac 2004. On April 16th (no less) I had received an MS Office Software security upgrade demand for the Mac 11.5.3. update of Dec 9, 2008. I was very surprised in that my preferences are automatically set to look for upgrades and I did not know why it had taken so long to find something from Dec!! Nonetheless I downloaded it but later checked my dossier on MS Office problems and found that I had taken down three pages of info from the MS site on this same 11.5.3. upgrade on Dec 13th 2008, which meant that I definitely had installed it that very day! In contrast to Safari, MS Office has made no repetitive demands since, but then I did repeat MS but not Safari. I still wonder what was really installed on April 16th, and am disturbed by the fact that ClamXav still has not been provided with the signatures of the latest Mac Trojans out in the wild, so if there is something nasty on my machine there is no way of telling.
Has anyone else had that problem with Office 2004?

providing such a list to ClamxAV?

"ClamXav still has not been provided with the signatures of the latest Mac Trojans out in the wild"


If you are aware of them, feel free to pass them along to the ClamXAV crowd and maybe to the users on this forum too

P

"Who would be providing such a list to ClamXav?"

"ClamXAV detects the known Trojans".

Well, the latter was what I believed myself until very recently. But my worry over the peculiar behaviour of Software Update, coupled with the fact too that ClamXav was jamming up and refusing to scan on one of my user "partitions", led me to do detailed research on ClamXav forums and elsewhere, leading to the scales falling from my eyes.
The story starts with a Mac journalist blogger called David Currie, from at or near New York and specialising in Mac security, who last December or so woke up to the idea or fact that ClamXav was a good six months behind in scanning for Mac Trojans, precisely in a period when they were multiplying. One of the reasons for this lay in the fact that ClamXav would appear to be a one-man team working for OSX for free, namely the highly-committed Mark Allan of GB, but that he was essentially dependent on the signatures of viruses he got from the ClamAV team, who grouped some 10 or more people scattered around the world and working on PC viruses and Trojans for Windows. This meant that ClamXav was essentially a programme for tracking PC malware on Macs, a sort of courtesy program that lessened the risk of a Mac, unaffected by the virus, passing it on to someone else's PC when sharing pics or docs. Mark was kept busy feeding in ten of thousands of PC viruses into ClamXav, and had been unable to get any reply or co-operation from the ClamAV team in providing him with the signatures of the latest Mac Trojans.
So David Currie set out to explore his contacts in the AV world to try to find someone to provide Mark with the necessary signatures, but after six months he had had no luck, either with the ClamAV team or elsewhere. Where possible, I have followed his public attempts on the net, and it is clear that David, convinced of the gravity of his mission and possessed of a rather short fuse, is not the most diplomatic of persons, and, faced with offhandedness, tends to blow up and call obstructive interlocutors Trolls etc. Nonetheless he had done sterling work in bringing the problem into the open and being the first Mac journalist to try to do something about it. Of course, the commercial AV firms have no interest in supplying ClamXav with any signatures they may have, as they would not want to see them distributed for nothing. Things emerged into the open in mid-May, when David finally joined the ClamXav forums discussions to openly discuss all this amicably. The upshot of all this is that they would appear to have finally (this end May) found someone on the ClamAV team to cooperate with them, but Mark nonetheless appeals to the Mac community to send him in any suspect material.
The problem has been that the Mac OSX community has been too complacent, spared problems for so long and underestimating the danger, inter alia, that Russia's and China's techno war against the West represents for us. Most of us have never consciously had any malware and would not know where and how (I speak for myself, too) to find suspect material on our machines such as Mac Trojans, unless we had an AV to find them for us!! So a potential vicious circle is created. We don't know, we don't look, we don't know how to look, we send nothing to ClamXav, (so we get no protection in return), we are meat waiting to be devoured and incorporated in bot-nets.

I'll send this off now, then look for the URLs of the sources and send them off later to you.

I thought one could edit one's posts here but that seems to be false.
My memory for names fails me. It is of course Derek Currie, not David. My apologies to Derek!
See the search results on markmail.org http://markmail.org/message/e35yotx7722oymql
for Derek Currie or Google for him.
Derek's User profile on www.macupdate.com has his original December letter re the problem but I cannot give the exact URL as Safari, unlike iCab, does not show the address in saved documents! So I take the liberty of pasteing in his letter here which will serve the purpose of showing what Mac Trojans were already doing the rounds in Dec.08.

"Dec 7 2008
DEREKCURRIE At this point in time it is important to note that ClamXav is over a year behind in its definitions of Mac malware. It is able to detect and remove Trojan OSX.RSPlug.A, discovered in September 2007. However, malware definitions for more recent Trojans are not built in. Specifically, there are no definitions for Trojan OSX.RSPlug variants B through E, Trojan OSX.Lamzev.A or OSX.Trojan.PokerStealer. Therefore, I consider it practically pointless to use it to detect and remove Mac OS X specific malware.

I am attempting to find a source for the missing definitions in order to have them provided to the Clamav developers. Wish me luck.

Meanwhile, as usual, ClamXav is a very good free anti-malware program for detecting and removing Windows specific malware.

An alternative FREEWARE anti-malware program for Mac OS X is iAntiVirus from PC Tools. It ONLY runs on 10.5 Leopard, but is entirely up-to-date.

Of the commercial anti-malware programs for general use, I only recommend Intego VirusBarrier, despite its cost. For business/enterprise users I recommend Sophos Anti-Virus.

I attempt to discuss current Macintosh security concerns at my blog:

http://mac-security.blogspot.com

:-Derek "

See
http://macsmarticles.blogspot.com/ for his homepage.

For the original discussion thread on Currie's mission on the Mark's Software Forums (Support Forums for MARK ALLAN'S SOFTWARE) see Poor review for ClamXav http://www.markallan.co.uk/BB/viewtopic.php?t=1540&sid=19f46705dc089539ffce5f5d06405d18
a thread opened by mushroom-daddy on 2 Feb 2008 and the links there.
For the ClamXav forum index there see: http://www.markallan.co.uk/BB/viewforum.php?f=1

I hope this will prove an eye-opener for CNET Forum Mac users!

Thanks to submissions from Virus Total, VirScan.org and Comodo Mark Allan has finally been able to add the signatures of the Mac Trojans to the ClamAV database. The announcement of the update is dated 11th June.So now ClamXav should finally protect Mac OSX users from the following Trojans:
Trojan.OSX.iservices.A
Virus name alias: MAC.OSX.Trojan.Krowi.A (Bitdefender)
Added: Trojan.OSX.Opener
Virus name alias: Trojan.Script.52097 (Bitdefender)
Trojan.OSX.iservices.B
OSX.DNSChanger.dmg
OSX.DNSChanger.dmg-1
Added: Trojan.OSX.RSPlug.F.dmg
Added: Trojan.OSX.RSPlug.F.dmg-1
Added: Trojan.OSX.RSPlug.F.dmg-2
Added: Trojan.OSX.RSPlug.F.dmg-3
Added: Trojan.OSX.RSPlug.F.dmg-4
Added: Trojan.OSX.RSPlug.F.dmg-5
Added: Trojan.OSX.RSPlug.G.dmg
Added: Trojan.OSX.RSPlug.G
Added: Trojan.OSX.RSPlug.C
Added: Trojan.OSX.RSPlug.D
Virus name alias: Trojan.Script.33614 (Bitdefender)

my source:http://lurker.clamav.net/message/20090611.102857.b376971e.en.html

Re the matter of problems with Software Update malfunctioning, the HomePage of MacFixit Forums discusses the problem at present.

"Do you have V4 Public Beta installed?"
You said
"Can't see it- and nothing comes up in spotlight. I guess i'm concerned about potential malware."

In this post you say:
" I've already got safari beta 4."

Just an FYI. Software update only connects to the Apple website. There is almost certainly no malware on your machine. ClamXAV detects the known Trojans, most of which can be prevented by not downloading software from unknown sites. DNSChanger has been around for long enough for Mac users to be fully aware of it.

P

Did I ask those questions? I don't think so. I did ask Google why I have to keep downloading Safari Public Beta. Google sent me to Mac Forums where I read that others are having to keep downloading Safari. Possibly I don't have to download it, but it is rather hard to ignore it when it comes back to Software Update after downloading it umpteen times.

I have a 1.83 GHz Intel Core Duo, Mac OS X, version 10.4.11. I bought it from Apple Online April 17, 2006. Please contact me again, if this isn't enough information.

Sincerely yours,
Muriel Mae Day

who was the original poster and to whom my post was addressed, then my post is for you.
Note that I did not say that Texvor asked the questions, the questions were mine, the quotes were Texvor's answers to those questions.

If you are a new poster, try this.
When Software Update tells you, again, about an update for Beta 4, highlight the entry and then, from the menubar, select Ignore this update. It should not come back again

P