Mavericks How-to: Block contacts in FaceTime and iMessage on OS X

header

With the highly anticipated update to Mavericks 10.9.2, users gained the ability to block contacts in FaceTime and iMessage. This has been a long-awaited addition, since iOS 7 received this feature five months ago. If you previously blocked people in iOS 7, the block list syncs over from your iOS devices to your Mac through iCloud. Make sure Documents and Data is turned on in order for that to occur.

Now with Mavericks, you are able to block certain phone numbers from iMessaging or FaceTiming you without needing to get up and grab your iOS device…

Read more

OS X 10.9.2 breaks AirPlay Mirroring and desktop extensions to external monitors for some users

airplay

A number of Mac users in an Apple Support Communities thread are reporting that Apple’s 10.9.2 update to Mavericks has broken AirPlay Mirroring to Apple TV and the ability to extend desktops to external monitors.

I just updated to 10.9.2 and now when i try and airplay mirror to my Apple TV, it sends the audio but just shows a black screen and i can’t drag anything to it. It doesn’t show any of the options for external displays in the displays section of System Preferences …  Read more

Apple releases OS X Mavericks 10.9.2 with SSL fix, FaceTime Audio, contact blocking, Mail fixes

Screen Shot 2014-02-25 at 1.03.45 PM

Following an extensive developer beta process, Apple has just released OS X Mavericks 10.9.2 to end users. The update brings a few new features and enhancements, including:

  • FaceTime Audio in the FaceTime and Messages apps
  • Contact blocking for FaceTime and iMessage
  • Mail app improvements
  • Autofill fixes for Safari
  • Audio fixes
  • VPN fixes
  • VoiceOver fixes

The release notes do not make mention of the SSL security bug that was squashed on iOS late last week, but a fix is present in this new OS X update. The update is available on the Mac App Store in the Software Update tab.

Read more

Security consultant takes less than a day to exploit OS X bug to capture all SSL traffic

ssl

Update: The bug has been fixed in OS X 10.9.2

Security consultant Aldo Cortesi said in a blog post (via ZDNet) that it took him less than a day to exploit the goto fail bug in OS X to capture all SSL traffic, and that there’s a good chance he isn’t the first to have done so – an implicit suggestion that the vulnerability may already be being used in man-in-the-middle attacks.

I’ve confirmed full transparent interception of HTTPS traffic on both IOS (prior to 7.0.6) and OSX Mavericks. Nearly all encrypted traffic, including usernames, passwords, and even Apple app updates can be captured. This includes:

  • App store and software update traffic
  • iCloud data, including KeyChain enrollment and updates
  • Data from the Calendar and Reminders
  • Find My Mac updates
  • Traffic for applications that use certificate pinning, like Twitter …  Read more