Index
A number represents a single reference to a topic. |
A number with a "+" sign represents a longer discussion of a topic. |
|
A B C D E F G H I K L M N O P Q R S T U V W X
A |
access control
1
|
Accounts system preferences
1
|
applications
|
|
factoring
1
|
|
interfaces
1+
|
arguments, command line
1
2
|
argv(0)
1
|
attackers
1
|
audit logs
1
|
authentication
1
2
|
|
APIs
1
|
authopen
1
|
Authorization Services
1
2
|
authorization
|
|
granting
1
|
|
revoking
1
|
AuthorizationExecWithPrivilege
1
|
B |
backups, iPhone
1
|
buffer overflows
1
2+
|
|
calculating buffer sizes
1
|
|
checklist
1
|
|
detecting
1
|
|
integer arithmetic
1
|
|
strings
1
|
buffer overflows See also heap, stack
1
|
C |
Certificate, Key, and Trust Services
1
|
certificates digital certificates
1
|
CFBundle
1
|
CFNetwork
1
|
chflags
1
2
|
chmod
1
2
|
chown
1
|
close-on-exec flag
1
|
code insertion
1
|
command-line arguments
1
2
|
command-line tools
1
|
Common Criteria
1
|
configuration files
1
|
crackers
1
|
Cryptographic Services Manager
1
|
cryptography
|
|
APIs
1
2
|
CSSM
1
|
CVE numbers
1
|
D |
daemons, launching
1
2
|
default settings
1
|
denial of service
1
2
3
|
device ID
1
|
digital certificate
|
|
displaying contents
1
|
|
identity
1
|
|
keychain access
1
|
|
Secure Transport API
1
|
digital certificates
1
|
document organization
1
|
dyld
1
|
dynamic link editor
1
|
E |
electronic crimes
1
|
elevated privileges
1
2
|
encryption
1
|
environmental variables
1
2
|
F |
factoring applications
1
|
fchmod
1
|
fchown
1
|
file descriptor
1
2
|
|
inheriting
1
|
file descriptors
1
|
file locations
1
|
file operations
|
|
Carbon
1
|
|
Cocoa
1
|
|
generic C
1
|
|
insecure
1
2+
|
|
secure
1
|
file system, remotely mounted
1
|
files
|
|
temporary
1
|
FileVault
1
2
|
firewall
1
|
fopen
1
|
format string attacks
1
|
FSFindFolder
1
|
fstat
1
|
FTP
1
|
fuzzing
1
|
G |
GID
1
|
group ID
1
|
guest access
1
|
GUI
1
|
H |
hackers
1
|
hard link
1
|
hash function
1
|
heap
1
|
|
overflow
1
2
|
HTTP
1
|
HTTPS
1
|
https
1
|
I |
identity
1
|
input validation
1
|
input
|
|
data structures
1
|
|
inappropriate
1
|
|
testing
1
|
|
to audit logs
1
|
|
types of
1
|
|
validating
1
2
3+
4
5
|
insecure file operations
1
2+
|
installer
1
|
integer overflows
1
|
interface, user
1
|
ipfw
1
|
K |
Kerberos
1
|
kernel extensions
1
2
|
kernel messages
1
|
KEXT
1
|
keychain
1
|
Keychain Access
1
|
Keychain Services
1
2
|
L |
launchd
1
2
|
least privilege, principle of
1
|
left bracket
1
|
level of trust
1
|
libbsm
1
|
/Library/StartupItems
1
|
logs, audit
1
|
lstat
1
|
M |
Mach ports
1
|
mach_init
1
|
memory
|
|
checklist
1
|
mkstemp
1
2
|
mktemp
1
|
Movie Toolbox Access Keys
1
|
N |
negative numbers
1
|
network ports
1
|
nobody user
1
|
nonrepudiation
1
|
NSBundle
1
|
NSTemporaryDirectory
1
|
O |
open
1
|
organization of document
1
|
P |
passwords
1
|
permissions
1
|
permissions See also privileges
|
phishing
1
2
|
plug-ins
1
|
policy database
1
2
|
policy, trust
1
|
port numbers
1
|
ports, Mach
1
|
private key
|
|
identity
1
|
privileges
1
2+
|
|
checklist
1
|
|
elevated
1
2
|
|
level, changing
1
|
|
principle of least privilege
1
|
|
root
1
|
process limits
1
|
R |
race conditions
1
2
|
|
interprocess communication
1
2
|
|
scripts
1
|
|
time of check–time of use
1
2
|
random numbers
1
|
references
1
|
remotely mounted file system
1
|
risk assessment
1
|
rm
1
2
|
root kit
1
|
root privileges
1
|
S |
script kiddies
1
|
scripts, avoiding race conditions
1
|
secure communication
|
|
SSL/TLS
1
2
|
Secure Transport
1
2
|
security checklists
1+
|
Security Objective-C API
1
|
Security system preferences
1
|
setegid
1
|
seteuid
1
|
setgid
1
|
setregid
1
|
setreuid
1
|
setrlimit
1
|
setuid
1
2
|
SFAuthorizationView
1
|
SFCertificatePanel
1
|
SFCertificateTrustPanel
1
|
SFCertificateView
1
|
SFChooseIdentityPanel
1
|
SFKeychainSavePanel
1
|
SFKeychainSettingsPanel
1
|
shell commands
1
|
signal handler
1
2
|
Smart Card
1
|
social engineering
1
2
3
|
spoofing
1
|
SSL
1
2
3
|
stack
1
|
|
overflow
1
2
|
stat
1
|
statistics of threats and attacks
1
2
|
string-handling functions
1
2
|
sudo
1
|
symbolic link
1
|
syslog
1
|
SystemStarter
1
|
T |
temporary files
1
2
3
|
|
and scripts
1
|
|
default location
1
2
|
test
1
|
threat modeling
1
|
time of check–time of use
1
2
|
TLS
1
2
3
|
trust policy
1
|
twos-complement arithmetic
1
|
U |
UID
1
|
|
unique
1
|
umask
1
|
unknown user
1
|
URL commands
1
2
|
URL Loading System
1
|
user ID
1
|
user interface
1
|
© 2008 Apple Inc. All Rights Reserved. (Last updated: 2008-05-23)
|
Did this document help you? |
Yes: Tell us what works for you.
|
|