What is Digg?Sponsored by HowLifeWorks
How Smart Guys Keep Their Faces Looking Young view!
howlifeworks.com - Why men have finally started to use certain anti-aging skin care products...
93 Comments
- ponerse, on 10/10/2007, -7/+28I'm surprised no one has figured out how Microsoft is responsible for this yet.
- noverflow, on 10/10/2007, -6/+19If there was a way to push the update to all the phones over the network, it wouldn't matter that much. But the fact of the matter is that many will not do the software update needed to fix this (when it comes out). And personally, I think this is a serious issue, as the last thing we need is more ways for identity theft.
- bobdobolena, on 10/10/2007, -0/+10Without having to click on macrumors/blog
http://www.securityevaluators.com/iphone/
FTA: Full disclosure at BlackHat: Dr. Charlie Miller will be presenting the details of the exploit at BlackHat in Las Vegas on August 2 at 4:45. - bigern75, on 10/10/2007, -2/+12HAHAHAHHA
- houndeyex, on 10/10/2007, -5/+13Bug in Apple Code = Disbelief from all users. Macs don't have flaws. Nor can they get viruses.
All users go out and purchase the next service pack for $130. - harbrut, on 10/10/2007, -2/+10"Many" meaning 0 people I would bet. They'll get the update when they sync. Now, if this were any other phone, then yeah, we'd have a problem. When I owned my Treo I applied the latest firmware update about 3 months after it came out because I had no idea there was one available. If you have an iPhone you don't have to worry about it, just plug it in.
- PhantomRogue, on 10/10/2007, -20/+28Bug in Microsoft Code = What Else is new, Its Microsoft Code. It wont ever be fixed.
Bug in Apple Code = Oh, it will be patched ASAP, no real worries from community.
It looks like Apple pays their Spin Doctors more than Microsoft pays theirs. - cmdrNacho, on 10/10/2007, -7/+14fanboys are the funniest, how many anit ms comments would there be, if it was ms and not apple. But since its apple, they all assume it will be patched quickly and don't see it as a major issue.
- leth4l, on 10/10/2007, -1/+8STOP, collaborate and listen.
- sholt, on 10/10/2007, -0/+7Well, I don't think they can patch OTA, but... iTunes automatically checks for iPhone updates once a week, which will be applied when the phone is synced with iTunes.
I don't imagine much difficulty distributing an update, since syncing with iTunes would likely be a frequent activity for iPhone owners, as it's the primary mode of recharging the phone, and the only way to load music/video onto it. - inactive, on 10/10/2007, -0/+6You'll give us 10 to 1 odds... but how much are you willing to wager?
- Aaronontheweb, on 10/10/2007, -0/+6Nobody except Apple themselves http://www.youtube.com/watch?v=M3Z386vXrt4
- raynar, on 10/10/2007, -4/+9But...it's Apple. So it's a "feature".
- inactive, on 10/10/2007, -10/+15In other news:
Digg.com to change domain name to www.iphone.com - inactive, on 10/10/2007, -4/+9Looks like there's a lot more people using microsoft's code.
It's a matter of preference, some people like OSX... some like Windows. Why do we have to make it a superiority/inferiority issue all the time?
Grow up. - houndeyex, on 10/10/2007, -5/+9Macs are retarded, and so are their advertisements.
http://www.youtube.com/watch?v=M3Z386vXrt4 - wageslaven, on 10/10/2007, -0/+4Engadget and Digg are hotbeds of Apple reality distortion -- and you think being buried down is a "MS fanboy" response? Did you ever consider that the other 98% of the worlds' Computer users (those not with a Mac) might just know a thing or two about the PC platform that is a constant target of Mac Cult FUD?
For *****'s sake, look at this article. Apple runs every app on the iphone as root. Someone discloses a full root exploit. And this forum is full of apologies, rationalization and misdirection.
Further, realize for a moment that the Computer Industry -- ie. professionals who know what the ***** they are talking about -- arent required to forgive the Cult of Mac its prescious pet dogma, and sacred world view. - wirelesshnic, on 10/10/2007, -0/+4Thank you for pointing us to the right page and just saying no to blog spam!
- horizontaleight, on 10/10/2007, -3/+7The word "fanboy" is quickly becoming the most annoying thing on the internet.
- inactive, on 10/10/2007, -1/+5The actual article:
http://www.nytimes.com/2007/07/23/technology/23iphone.html?_r=1&oref=slogin - noverflow, on 10/10/2007, -0/+4For this reason I keep my phone wrapped in foil at all times.
Really crappy reception, and the touch screen really does not seem to like it... But im safe right? - jester55, on 10/10/2007, -4/+8STOP, update time
- deadbaby, on 10/10/2007, -0/+3Anyone who wants to sync their phone to iTunes will have to update.
- an0nym0us, on 10/10/2007, -0/+3word.
- inactive, on 10/10/2007, -1/+4from the article:
>“Windows gets hacked all the time not because it is more insecure than Apple, but because 95 percent of computer users are on Windows,” he said. “The other 5 percent have enjoyed a honeymoon that will eventually come to an end.”
BRING IT!!!
(Gnu/Linux) - wageslaven, on 10/10/2007, -0/+2Did you miss the point where they tell you that *EVERYTHING* runs as root on the iphone? Every application has root privilages, meaning that every single app or pc of code that is exploited will lead to another one of these full-root exploits.
Bad bad design decision. - Aaronontheweb, on 10/10/2007, -1/+3DON'T WORRY GUYS IT'S A BETA IPHONE, JUST LIKE BETA SAFARI FOR WINDOWS.
BETA! - jonahan52, on 10/10/2007, -5/+7Yea, maybe you should get a better job than McDonalds. I know it's hard to fathom making more than $1000 a year but it is possible.
- portis, on 10/10/2007, -10/+12Told you guys...iPhone is actually iPhony!
- harbrut, on 10/10/2007, -0/+2I wouldn't think monthly updates unless people are finding stuff monthly. I would think they'd patch whenever someone finds a bug.
- sholt, on 10/10/2007, -0/+2True, but will we see monthly iPhone security patches released alongside the OS X ones, i.e. if WebCore or CoreGraphics were updated?
- deadbaby, on 10/10/2007, -3/+5By running a firewall on it? Many phones do it.
- wageslaven, on 10/10/2007, -0/+2Like hell, I can root exploit it remotely.
- redfox2600, on 10/10/2007, -3/+5One big problem, iPhones don't allow third party apps.
- Aaronontheweb, on 10/10/2007, -4/+6Holy ***** MacParrot got owned.
- sholt, on 10/10/2007, -0/+2Likely because this /is/ a real vulnerability, discovered by a reputable security firm, acting in a rational manner. Also, this lacks any mitigating factors within the device itself, as the security policies of OS X are nullified by Apple's decision to run all applications as root. So, this is /potentially/ a very big deal. However, all the details of this vulnerability, as well as a patch closing it, have already been submitted to apple.
Apple typically releases their security updates on the last Thursday of the month. That's 3 days from now, giving them about a week and a half to produce and test an update, more than enough time since this was reported to them on the 17th.
If we don't see a patch by Thursday, put pressure on Apple. If Apple still hasn't provided a patch by the Aug. 2 full disclosure date, they deserve any and all criticism they get. - GotMex, on 10/10/2007, -0/+2We need LittleSnitch for the iPhone
- sholt, on 10/10/2007, -0/+2it's in the iPhone's flash (the "hard drive"), takes up ~700MB.
- FKnight, on 10/10/2007, -2/+4I'm amazed I haven't seen anyone say 'well, it's not a /real/ security hole' like they do with other Mac related security holes.
- Spuy767, on 10/10/2007, -3/+5No, it looks like Apple has a history of not waiting til the second tuesday to get their patches out. Apple are ferociously swift at releasing patches to real vulnerabilities.
- inactive, on 10/10/2007, -0/+1LOL I hope Gymbo was being sarcastic as you were... if not that's typical apple fan thinking.
Cant be our fault, no way !! lol - wageslaven, on 10/10/2007, -0/+1I wonder if Apple will threaten to sue the Security Researcher again.
- inactive, on 10/10/2007, -0/+1Um Apple has not fixed many expoits STILL in OSX !
WHATS NEW!? lol - Birty, on 10/10/2007, -0/+1Does Paris Hilton have an iPhone yet?
- wageslaven, on 10/10/2007, -0/+1Even if the iphone could run user-installed apps, a firewall would do nothing to solve this problem (unless, you choose to firewall your DNS traffic).
Turn off the WiFi and/or dont use http. - inactive, on 10/10/2007, -0/+1Odd, that I've not heard of many (if any) holes in the windows smartphones that have been out for years.
- blogosphear, on 10/10/2007, -2/+3"Mom, I'm sorry you couldn't call me, you need to enter the text you see in the image to get through to me"
- inactive, on 10/10/2007, -0/+1We are beginning to call them "Mactards", much more apt and accurate ;)
- inactive, on 10/10/2007, -2/+3Ok, as a phone the iPhone is admittedly a dead sexy design. I want one badly but At&t doesn't provide service to my home area or work area. Both are dead zones. The iPhone is getting a larger market share and will be a target. Apple will patch the vulnerabilities, and the hackers will find more. Welcome to the big leagues, Apple. Now is their chance to shine, and show M$ how to handle the inevitable security vulnerabilities found anytime a piece of electronic equipment communicates with another piece of electronic equipment, but the pressure will be on.
-
Show 51 - 94 of 94 discussions
© Digg Inc. 2009
— Content created and posted by Digg users is