Index

A number represents a single reference to a topic.

A number with a "+" sign represents a longer discussion of a topic.

A   B   C   D   E   F   G   H   I   K   L   M   N   O   P   Q   R   S   T   U   V   W   X   

A
access control 1
Accounts system preferences 1
applications
	factoring 1
	interfaces 1+
arguments, command line 1 2
argv(0) 1
attackers 1
audit logs 1
authentication 1 2
	APIs 1
authopen 1
Authorization Services 1 2
authorization
	granting 1
	revoking 1
AuthorizationExecWithPrivilege 1

B
backups, iPhone 1
buffer overflows 1 2+
	calculating buffer sizes 1
	checklist 1
	detecting 1
	integer arithmetic 1
	strings 1
buffer overflows See also heap, stack 1

C
Certificate, Key, and Trust Services 1
certificates digital certificates 1
CFBundle 1
CFNetwork 1
chflags 1 2
chmod 1 2
chown 1
close-on-exec flag 1
code insertion 1
command-line arguments 1 2
command-line tools 1
Common Criteria 1
configuration files 1
crackers 1
Cryptographic Services Manager 1
cryptography
	APIs 1 2
CSSM 1
CVE numbers 1

D
daemons, launching 1 2
default settings 1
denial of service 1 2 3
device ID 1
digital certificate
	displaying contents 1
	identity 1
	keychain access 1
	Secure Transport API 1
digital certificates 1
document organization 1
dyld 1
dynamic link editor 1

E

electronic crimes 1

elevated privileges 1 2

encryption 1

environmental variables 1 2

F
factoring applications 1
fchmod 1
fchown 1
file descriptor 1 2
	inheriting 1
file descriptors 1
file locations 1
file operations
	Carbon 1
	Cocoa 1
	generic C 1
	insecure 1 2+
	secure 1
file system, remotely mounted 1
files
	temporary 1
FileVault 1 2
firewall 1
fopen 1
format string attacks 1
FSFindFolder 1
fstat 1
FTP 1
fuzzing 1

G

GID 1

group ID 1

guest access 1

GUI 1

H
hackers 1
hard link 1
hash function 1
heap 1
	overflow 1 2
HTTP 1
HTTPS 1
https 1

I
identity 1
input validation 1
input
	data structures 1
	inappropriate 1
	testing 1
	to audit logs 1
	types of 1
	validating 1 2 3+ 4 5
insecure file operations 1 2+
installer 1
integer overflows 1
interface, user 1
ipfw 1

K

Kerberos 1

kernel extensions 1 2

kernel messages 1

KEXT 1

keychain 1

Keychain Access 1

Keychain Services 1 2

L

launchd 1 2

least privilege, principle of 1

left bracket 1

level of trust 1

libbsm 1

/Library/StartupItems 1

logs, audit 1

lstat 1

M
Mach ports 1
mach_init 1
memory
	checklist 1
mkstemp 1 2
mktemp 1
Movie Toolbox Access Keys 1

N

negative numbers 1

network ports 1

nobody user 1

nonrepudiation 1

NSBundle 1

NSTemporaryDirectory 1

O

open 1

organization of document 1

P
passwords 1
permissions 1
permissions See also privileges
phishing 1 2
plug-ins 1
policy database 1 2
policy, trust 1
port numbers 1
ports, Mach 1
private key
	identity 1
privileges 1 2+
	checklist 1
	elevated 1 2
	level, changing 1
	principle of least privilege 1
	root 1
process limits 1

Q

QuickTime 1

R
race conditions 1 2
	interprocess communication 1 2
	scripts 1
	time of check–time of use 1 2
random numbers 1
references 1
remotely mounted file system 1
risk assessment 1
rm 1 2
root kit 1
root privileges 1

S
script kiddies 1
scripts, avoiding race conditions 1
secure communication
	SSL/TLS 1 2
Secure Transport 1 2
security checklists 1+
Security Objective-C API 1
Security system preferences 1
setegid 1
seteuid 1
setgid 1
setregid 1
setreuid 1
setrlimit 1
setuid 1 2
SFAuthorizationView 1
SFCertificatePanel 1
SFCertificateTrustPanel 1
SFCertificateView 1
SFChooseIdentityPanel 1
SFKeychainSavePanel 1
SFKeychainSettingsPanel 1
shell commands 1
signal handler 1 2
Smart Card 1
social engineering 1 2 3
spoofing 1
SSL 1 2 3
stack 1
	overflow 1 2
stat 1
statistics of threats and attacks 1 2
string-handling functions 1 2
sudo 1
symbolic link 1
syslog 1
SystemStarter 1

T
temporary files 1 2 3
	and scripts 1
	default location 1 2
test 1
threat modeling 1
time of check–time of use 1 2
TLS 1 2 3
trust policy 1
twos-complement arithmetic 1

U
UID 1
	unique 1
umask 1
unknown user 1
URL commands 1 2
URL Loading System 1
user ID 1
user interface 1

V

validating input 1 2+

W

wildcard characters 1

X

xinetd 1

---