Rocksolid Light

News from da outaworlds

mail  files  register  groups  login

Message-ID:  

BOFH excuse #256: You need to install an RTFM interface.

comp / comp.sys.mac.advocacy / Re: Whom can you trust with your data? (2/2)

SubjectAuthor
* Re: Whom can you trust with your data? (2/2)Alan
`* Re: Whom can you trust with your data? (2/2)Newyana2
 +* Re: Whom can you trust with your data? (2/2)Alan
 |`* Re: Whom can you trust with your data? (2/2)Newyana2
 | `* Re: Whom can you trust with your data? (2/2)Alan
 |  `* Re: Whom can you trust with your data? (2/2)-hh
 |   `* Re: Whom can you trust with your data? (2/2)Newyana2
 |    +* Re: Whom can you trust with your data? (2/2)-hh
 |    |`* Re: Whom can you trust with your data? (2/2)Newyana2
 |    | +- Re: Whom can you trust with your data? (2/2)Alan
 |    | +* Re: Whom can you trust with your data? (2/2)Your Name
 |    | |`* Re: Whom can you trust with your data? (2/2)Newyana2
 |    | | +- Re: Whom can you trust with your data? (2/2)Alan
 |    | | `- Re: Whom can you trust with your data? (2/2)Your Name
 |    | +- Re: Whom can you trust with your data? (2/2)-hh
 |    | +* Re: Whom can you trust with your data? (2/2)Chris
 |    | |`* Re: Whom can you trust with your data? (2/2)Newyana2
 |    | | +- Re: Whom can you trust with your data? (2/2)Chris
 |    | | `- Re: Whom can you trust with your data? (2/2)Alan
 |    | `* Re: Whom can you trust with your data? (2/2)Tom Elam
 |    |  +- Re: Whom can you trust with your data? (2/2)Alan
 |    |  `* Re: Whom can you trust with your data? (2/2)Your Name
 |    |   `- Re: Whom can you trust with your data? (2/2)Alan
 |    `- Re: Whom can you trust with your data? (2/2)Jolly Roger
 +- Re: Whom can you trust with your data? (2/2)Your Name
 `- Re: Whom can you trust with your data? (2/2)Chris

Pages:12
Subject: Re: Whom can you trust with your data? (2/2)
From: Alan
Newsgroups: misc.phone.mobile.iphone, alt.privacy, alt.comp.os.windows-10, alt.privacy.anon-server, comp.sys.mac.advocacy
Organization: A noiseless patient Spider
Date: Tue, 1 Oct 2024 18:22 UTC
References: 1 2 3
Path: eternal-september.org!news.eternal-september.org!.POSTED!not-for-mail
From: nuh-uh@nope.com (Alan)
Newsgroups: misc.phone.mobile.iphone,alt.privacy,alt.comp.os.windows-10,alt.privacy.anon-server,comp.sys.mac.advocacy
Subject: Re: Whom can you trust with your data? (2/2)
Date: Tue, 1 Oct 2024 11:22:52 -0700
Organization: A noiseless patient Spider
Lines: 54
Message-ID: <vdhelt$2r31a$3@dont-email.me>
References: <vct2n2$2tpgj$1@dont-email.me> <vdepdg$2b61o$1@dont-email.me>
<vdf849$2ddvr$1@dont-email.me>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 8bit
Injection-Date: Tue, 01 Oct 2024 20:22:53 +0200 (CEST)
Injection-Info: dont-email.me; posting-host="ebea2534d7017a04a040685616773cc3";
logging-data="2985002"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX1/phHsEZ0bZsf4QweO5ulOgtIsIPRGaulg="
User-Agent: Mozilla Thunderbird
Cancel-Lock: sha1:2fbKh+nHjEDoEYobgjbJmjbms2o=
In-Reply-To: <vdf849$2ddvr$1@dont-email.me>
Content-Language: en-CA
View all headers

On 2024-09-30 15:18, Your Name wrote:
> On 2024-09-30 18:07:45 +0000, Tom Elam said:
>> On 9/24/2024 11:45 AM, Newyana2 wrote:
>>> On 9/24/2024 9:13 AM, -hh wrote:
>>>
>>> It's not my intention to argue with you or try to convert you. I
>>> only post these things because if it were me, I'd want people
>>> to tell me. And this is a public forum where people might come
>>> across this info. And some people are not ostriches.
>>
>> I seem to remember an instance from some years back where a couple who
>> had shot up some folks were turned into mincemeat by law enforcement.
>> An iPhone of theirs survived the hail of bullets. Apple would not give
>> the cops the encryption key. Cops had to turn to a hacker to get into
>> the phone.
>
> Apple can not give anyone access to someone else's device. Apple stores
> the user's *public key* on their servers, but the user *private key* is
> stored on the device itself. There's no way for Apple to access that
> private key, even if they wanted to ... despite what the brainless
> numbnut trolls and conspiracy nutters like "Newyana2" want to
> idiotically believe.
>
>

That's actually not an accurate description of the subject.

The standard setup for iCloud DOES have Apple storing the private keys
to your data:

'The encryption keys from your trusted devices are secured in Apple data
centers, so Apple can decrypt your data on your behalf whenever you need
it, such as when you sign in on a new device, restore from a backup, or
recover your data after you’ve forgotten your password.'

<https://support.apple.com/en-ca/102651>

For complete clarity, the fact that it says "so Apple can decrypt your
data on your behalf", means they hold your private keys.

However!

'Advanced Data Protection for iCloud

Starting with iOS 16.2, iPadOS 16.2 and macOS 13.1, you can choose to
enable Advanced Data Protection to protect the vast majority of your
iCloud data, even in the case of a data breach in the cloud.'

And that protection means that Apple won't hold your private keys:

'If you enable Advanced Data Protection and then lose access to your
account, Apple will not have the encryption keys to help you recover it
— you’ll need to use your device passcode or password, a recovery
contact, or a personal recovery key.'

Pages:12

rocksolid light 0.9.8
clearnet tor