Rocksolid Light

News from da outaworlds

mail  files  register  groups  login

Message-ID:  

Change your thoughts and you change your world.

comp / comp.sys.mac.system / Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decade

SubjectAuthor
* Almost every iOS & macOS app has had huge vulnerabilities for over a decadePeter
+* Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeJörg Lorenz
|+* Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeBill Powell
||+* Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeJörg Lorenz
|||`- Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadePeter Piper
||`* Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeAlan Browne
|| +- Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeLarry Wolff
|| `* Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadebadgolferman
||  +* Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeChris
||  |`* Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeJolly Roger
||  | `* Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeAndy Burns
||  |  `- Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeJolly Roger
||  `* Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeJolly Roger
||   `* Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeAndrew
||    `* Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeJolly Roger
||     `- Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeAndrew
|`* Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeBob Eager
| +* Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeOliver
| |`- Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeJörg Lorenz
| +- Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeJörg Lorenz
| `* Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeYour Name
|  `- Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeJolly Roger
`* Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeChris
 `* Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeJolly Roger
  `* Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadedavid
   +- Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeJolly Roger
   `- Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decadeChris

Pages:12
Subject: Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decade
From: Peter Piper
Newsgroups: comp.sys.mac.system
Date: Fri, 5 Jul 2024 17:03 UTC
References: 1 2 3 4
Path: eternal-september.org!news.eternal-september.org!feeder3.eternal-september.org!news.gegeweb.eu!gegeweb.org!usenet-fr.net!feeder1-2.proxad.net!proxad.net!feeder1-1.proxad.net!193.141.40.65.MISMATCH!npeer.as286.net!npeer-ng0.as286.net!peer02.ams1!peer.ams1.xlned.com!news.xlned.com!peer02.ams4!peer.am4.highwinds-media.com!news.highwinds-media.com!fx09.ams4.POSTED!not-for-mail
From: peterpiper@nospam.invalid (Peter Piper)
Newsgroups: comp.sys.mac.system
Subject: Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decade
References: <v62o4t$22b9c$1@dont-email.me> <v62opd$45rh$3@solani.org> <v62pv9$16d01$1@matrix.hispagatos.org> <v636hb$4dm2$1@solani.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Lines: 20
Message-ID: <1IVhO.1762$SpN6.306@usenetxs.com>
X-Complaints-To: https://www.astraweb.com/aup
NNTP-Posting-Date: Fri, 05 Jul 2024 17:03:57 UTC
Date: Fri, 5 Jul 2024 17:03:45 -0000
X-Received-Bytes: 1524
View all headers

Jörg Lorenz wrote:
> Am 03.07.24 um 08:09 schrieb Bill Powell:
>> On Wed, 3 Jul 2024 07:49:33 +0200, Jörg Lorenz wrote:
>>
>>> You are really a tragic figure in the english-speaking Usenet.
>>
>> Thank the Lord you know so much about Apple to declare that all those
>> articles published today about this ten year long exploit are all wrong.
>
> Where the heck did I say or write that?
> You obviously do not have a clue how this sociopath Arlen contaminated
> and in the end destroyed the group misc.phone.mobile.iphone.

That is Arlen you are replying to, Jörg.
I count 6 different sock-puppet nyms of his in this thread.

>> What would we do on a technical ng without your wisdom?
>
> Kindergarten? At least you are incredibly trollish indeed, dear! *LOL*

Subject: Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decade
From: Andrew
Newsgroups: misc.phone.mobile.iphone, comp.sys.mac.system, uk.telecom.mobile
Organization: BWH Usenet Archive (https://usenet.blueworldhosting.com)
Date: Mon, 8 Jul 2024 03:14 UTC
References: 1 2 3 4 5 6 7 8
Path: eternal-september.org!news.eternal-september.org!feeder3.eternal-september.org!usenet.blueworldhosting.com!diablo1.usenet.blueworldhosting.com!nnrp.usenet.blueworldhosting.com!.POSTED!not-for-mail
From: andrew@spam.net (Andrew)
Newsgroups: misc.phone.mobile.iphone,comp.sys.mac.system,uk.telecom.mobile
Subject: Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decade
Date: Mon, 8 Jul 2024 03:14:14 -0000 (UTC)
Organization: BWH Usenet Archive (https://usenet.blueworldhosting.com)
Message-ID: <v6fli6$2sf5$1@nnrp.usenet.blueworldhosting.com>
References: <v62o4t$22b9c$1@dont-email.me> <v62opd$45rh$3@solani.org> <v62pv9$16d01$1@matrix.hispagatos.org> <_ObhO.2$OXD2.1@fx47.iad> <v63v8b$4tnp$1@solani.org> <lelk6pF91g3U2@mid.individual.net> <v65dij$bum$1@nnrp.usenet.blueworldhosting.com> <leo3t2Fkdk4U1@mid.individual.net>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Injection-Date: Mon, 8 Jul 2024 03:14:14 -0000 (UTC)
Injection-Info: nnrp.usenet.blueworldhosting.com;
logging-data="94693"; mail-complaints-to="usenet@blueworldhosting.com"
User-Agent: NewsTap/5.5 (iPad)
Cancel-Lock: sha1:xV3arjmz3Yt2mZCFBeR7XqEwU3Q= sha256:7h9rmJ3lWi6JBvdOc9MmCk5m3Te7DGpsrm/ybhpntjE=
sha1:vGLsjlFuekZ/EtBaYsvVRCFOSXs= sha256:a82Ay6ILIC1+2eFROSTS7D/OKbbC0amkI2M/ixKIqTI=
X-Face: VQ}*Ueh[4uTOa]Md([|$jb%rw~ksq}bzqA;z-.*8JM`4+zL[`N\ORHCI80}]}$]$e5]/i#v qdYsE`yh@ZL3L{H:So{yN)b=AZJtpaP98ch_4W}
View all headers

badgolferman wrote on Sun, 7 Jul 2024 12:02:22 -0000 (UTC) :

> This situation reminds me of the Ford Explorer rollover debacle. Ford
> blamed Firestone and Firestone blamed Ford. In reality they both had a
> major part in the whole thing. Firestone tires were separating at the tread
> and Ford Explorers had weak suspensions and high center of gravity. Both of
> those caused the exceedingly high number of rollovers and deaths.

Whom did the customer purchase the vehicle from, Ford or Firestone?
The answer is Ford. So this is purely a Ford ecosystem problem.

To wit, this huge security hole is purely an Apple ecosystem problem.
https://www.darkreading.com/cloud-security/apple-cocoapods-bugs-expose-apps-code-injection

What kind of ecosystem is so primitive that ANYONE ON THE PLANET could
modify any of three million iOS/macOS apps at will - whenever they want?

For ten years!

> Take your pick as to whom to blame, but it shows neither company performed
> adequate testing together or merely ignored warning signs.

If Apple did NOT tout that their ecosystem provided safety and security, we
could let Apple off the hook for never bothering to test that claim.

As it is, it's clear that the one thing the primitive Apple ecosystem does
NOT provide, is safety & security.

I wonder if these zealots realize ANYONE ON THE PLANET FOR TEN YEARS could
inject ANY CODE THEY WANTED TO INJECT into over three million iOS/mac apps.

Pages:12

rocksolid light 0.9.8
clearnet tor