What is Digg?37 Comments
- doiveo, on 10/28/2008, -3/+44Nice thing about open source, the team could also submit a potential fix.
- JordanE, on 10/29/2008, -1/+42It has already been fixed as well.
"Google said the problem had been fixed and is working with HTC, the maker of the phone, and T-Mobile USA to send the patch to current customers. Google also said the security system of the phone would limit any malicious intruder to a single application, unlike other smartphones."
http://www.fiercewireless.com/story/g1-security-fl ... - Craga89, on 10/29/2008, -2/+25I'm willing to bet this is fixed within a week, if not sooner. The great thing about open source, when you find a flaw not only can you report it, you can also fix it yourself.
- gllopc, on 10/29/2008, -0/+10By any chance, do you have to register with the local police every time you move?
- Pfkninenines, on 10/29/2008, -0/+9And this is why Open Source is great. Not only was there a flaw found, but it was already fixed.
- bigtrouble777, on 10/29/2008, -1/+9These security guys did a crappy thing by exposing the security flaws without giving Google enough time to even look into the issue. It seems to be a pretty minor issue at that.
- ssj4vegita2002, on 10/29/2008, -0/+7This is already fixed in the new OTA update they are pushing out as we speak, RC29. RC28 began last week, but they suspended it to add this fix in, and are now sending it out again.
- Trifold, on 10/29/2008, -1/+7The Google fix team; faster than the speed of Digg.
- centerblack, on 10/29/2008, -0/+5They're not going to spin anything, it already got fixed. If anything it looks good for Google because they got a fix ready so quickly.
All software has bugs. Google, Apple, Microsoft, and Teletubby fanboys alike have to admit that. - skyshock1, on 10/29/2008, -1/+6+1.
The honorable thing to do is notify the developers first through the proper channels and suggest a fix. If nothing gets done, then escalation to another avenue may be an option. To go screaming to the press about some security flaw you found w/o talking to the developers first is only done by whiney little bitches who need their ego stroked. - Tddupre, on 10/29/2008, -0/+4no one gives a flying *****
- CrackyJSquirrel, on 10/29/2008, -0/+4Just goes to show you that software is still written by humans and will have flaws. Welcome to reality. Its the software life cycle.
- xerox, on 10/29/2008, -0/+4@ShrimpCrackers,
"Wednesday, September 26th, 2007" and its an article about GMail.
Were you even trying? - matt.rubin, on 10/29/2008, -0/+3retard.
- WorldGroove, on 10/29/2008, -2/+5That issue was much worse than this G1 issue.
- You didn't need to be techie to execute it.
- No preplanning needed.
I can just pick up your iPhone and get into it, gameover. And the iPhone isn't openSource - gotta wait for Apple to fix it. The only saving grace of that bug was that you needed unmonitored physical access to the phone.
With this webbrowser thing, I have to set up a bad-site with software that I wrote to exploit your G1. And I still need to get you to visit it. Far more planning and technical-expertise are required to pull tis one off successfully. - alsutton, on 10/29/2008, -0/+2Hopefully Google will learn to open source stuff a bit earlier than the day before consumers get it, that way things can be fixed before they become a real problem.
- v4vishal, on 10/29/2008, -0/+2The T-Mobile G1 goes on sale in the UK on Thursday, and will be available for free on £40 per month contracts.
Free? Why the hell we pay $200 here? - alsutton, on 10/29/2008, -0/+2Because in the UK they're paying a lot more per-month (around $65)
- theOster, on 10/29/2008, -1/+3who do you know that has a G1? and of those people how many would be "visiting rogue websites"? we're not idiots.
- supermanred, on 10/30/2008, -0/+1Open source is a great concept, but not for the OS on my ***** phone.
I want a locked down, updatable platform where apps are screened by someone to make sure there is no malicious code in it.
The G1 app store is a few months away from becoming an asylum which is run by the inmates. - int19h, on 10/30/2008, -0/+1Linux is good right now, I don't know what you are talking about.
- GREEDOnvrFIRED, on 10/29/2008, -0/+1But what you don't see here in the comments is dozens of Apple "fanboys" saying I told you so. Or bad mouthing the product or its vulnerabilities. Why is that? And I mean that question in all seriousness. The first couple of posts on Digg about iPhone security flaws brought a flood of attacks on iPhone owners and their stupidity." And yet the iPhone users reaction to this post is "Meh, I dont have one of those." I am tempted to believe that there are no Apple fanboys... just those who hate Apple enough to attack it at every turn. I could be wrong I suppose.
- rYno, on 10/29/2008, -0/+1ya fixed - just waiting for RC29 to push to me OTA
- int19h, on 10/29/2008, -1/+1The whole point of Android is not what it is right now, but the killer potential it has.
- r3zonance, on 10/29/2008, -1/+1"- You didn't need to be techie to execute it. "
So what, it was a hell of a lot less invasive, oooh you could see my contacts/email so what.
With the G1 flaw you could steal ANY information AS IT WAS BEING ENTERED into the WEB BROWSER. Doesn't matter much, it'd only have been somebody's bank details and god knows what else personal information. - supermanred, on 10/30/2008, -1/+1Yeah! Like Linux!
20 years ago Linux was next year's operating system of choice... it still is... unfortunatley...next year never comes! - r3zonance, on 10/29/2008, -3/+2Still, for much less of a problem (the Emergency Call vulnerability) Apple got absolutely slated.
Oh, the double standard. - ShrimpCrackers, on 10/29/2008, -3/+2Bith, its been fixed already. Patch is coming out. Google 1, Apple 0.
http://www.marketingpilgrim.com/2007/09/googles-hu ... - Bith8654, on 10/29/2008, -2/+1Well on one hand Android is open source, while Apple isn't. Well they have some open-source stuff, but the issue you're describing didn't occur on an open-source product. Also Apple had the problem, fixed it, and then had it again in a later "improved" update.
On the other hand, you are paying money (close to $600, unless they have plan options) for the phone. I'm definately not a programmer, took a Pascal class in high school and hated it, so I'm certainly not going to be able to fix it myself, and a majority of G1 owners probably fall into my category. So unless they come out with a fix pretty fast, I'm basically paying the same amount I would for a non-open source product, only to have to wait just as long for a solution.
So basically, there is kind of a double standard, but people might just be giving Google a free pass because they tried something pretty radically different. They may feel like open-source could have enough extra benefits to balance out the fact that there are still security issues from time to time. - smaier, on 10/29/2008, -6/+4"Hackers could have used the security loophole to trick G1 users into visiting a rogue website, which would in turn secretly install keystroke-logging software onto the phone. That would enable hackers to remotely monitor and record what buttons the user pressed, and could have made it easy to steal identity information, such as logins and passwords, for banking or shopping websites."
For a minute I thought I was reading about a Microsoft product. Just goes to show that nothing is "totally secure" and the user needs to be conscience of the fact. - enotswhat, on 10/29/2008, -3/+1looks for a lightspeed4 reply
keeps looking - LightSpeed4, on 10/29/2008, -4/+1So you basically do more work and it doesnt guarantee a fix. nice...
- LightSpeed4, on 10/29/2008, -7/+2HAHA I cant wait to see how the google fanboys spin this one.
- LightSpeed4, on 10/29/2008, -11/+3keyword "potential"
Android is crap - sharkich, on 10/29/2008, -11/+3***** design(
- phosphite, on 10/29/2008, -13/+2Looks like somebody cracked the back-door to the G-spot.
Browsing Digg on your phone just got easier with our enhancements to the 
© Digg Inc. 2009
— Content created and posted by Digg users is