I give it 3 days until Stevey replies to an email and 5 until someone maliciously uses that security hole.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Apple Investigating iOS Vulnerability Allowing Web-Based Jailbreak
- Thread starter MacRumors
- Start date
- Sort by reaction score
Very funny to see a jail breakers frustration when half way through the jail break the 3G drops out or the dudes phone is bricked during the process... or even better the web site is hijacked in the near future and all these phones are bricked... three cheers for the dev team!
Let me say this and hopefully a million people see it, "YOU CANT BRICK AN IPHONE"
It's what DFU is for.... man.
Can't have users enjoying choice....now can we? Once upon a time Steve Jobs said that Apple believed in choice when talking about Internet Explorer. How times have changed
Funny thing is, to fix the PDF exploit, you need to JB your phone and then get the update. Yes, right now, you need to JailBreak your phone to make it more secure.
That's a complete rationalization. There is no difference between a jailbreaking exploit and a website that would take advantage of, according to Charlie Miller, a bug in an Adobe font to induce a system failure, and then to inject code. The thing is, the way this exploit will be fixed will be by fixing the vulnerability, after which, you "choice" lunatics will then yell about evil Apple closing your fun shop. Hey, don't want to get bricked, don't jailbreak.
But go ahead, be mad. Get a friggin' Android phone and shut the hell up.
They said it was legal. They didn't advise you to do it, particularly going to a who-knows-who-this-is website and letting them exploit a security flaw. Of course, you can be sure that nobody will rootkit you to grab your personal information. No, nobody would do that.
If you like a phone that's open for mischief, try Android.
It's already in the wild. When this was announced on the weekend, do you think that hackers couldn't figure it out?
"Oh, but it's MY phone, and I'm sharing it with thieves."
Why would Apple officially frown upon doing something legal with your phone. They sound a little draconian to me. But hey, anything that makes the un-hackable unix based and most advanced OS in the world even less hackable works for me!
/******
Because for hackers, it's fun to crack it. For 95% of iPhone users, it's a damn security hole that people will exploit in a more malevolent way. Thanks for nothing, stupid.
So, now you're a software and business critic, right?
By the way, Microsoft just patched a flaw in XP SP3, Vista and Windows 7, that made every single version of Windows since '95 at least vulnerable to just this kind of attack through the .lnk files.
There's no way around some software errors. There's no platform that's completely safe.
If Microsoft "hired more programmers," it seems to have missed the .lnk problem, and thousands of other vulnerabilities all that time, and pushed out some of the worst, most security-challenged bloatware ever between the late '90s and about 2006.
Windows Vista, and particularly 7, were produced by small, Apple-like groups.
I think you missed the sarcasm, jerk. And btw, it's a security hole for 100% of iPhone users, it just so happens that ~5% of them also take advantage of the hole for other, more legal, reasons.
Look, that exploit exists whether or not it was used to jailbreak. It would still be there now and probably go on unpatched for quite some time if it had not been exploited the way it was.
Some of us prefer having a choice and using OUR device the way we want to. I bought it, I OWN it. It's unfortunate that Apple forces a situation where things like this have to happen rather than giving us full file system access from the start.
Want it to stop? Tell Apple to open our iPhones up for us. Let us have file system access and the ability to install apps from any source.
actually all the more reason to create a new law that would strictly forbid any kind of locking (like locking to a carrier/sim card, preventing applications from installing/running, etc) of any mobile phone or electronic device against the owner... also, the mere suggestion that phones should be locked in any way, should be a crime (yeah, **** "free speech" , it doesn't exist anyway)
yeah, you're a fanboy, but what you don't understand (like most other fanboys) is that things like "most functional possible" and "restrictions" simply don't go together, no matter what!
no warranty should be voided... modern mobile phones (smart phones at least) are simply miniature computers... since desktop,laptop and netbook producers don't and can't legally void warranties based on the nature of the software installed, the same rules should apply to mobile phone manufacturers, because the software cannot damage the hardware...
it's not about viruses, it's about control: the control of the things that you use on your iphone: from applications to media, books and services... apple wants you to buy everything from apple or its partners (so that apple get royalties or some other kind of income)... even when you get "free" stuff, apple gets paid: for example when you get a "free app" apple will get money from the creator of that program because if you want to have your apps on app store, you have to pay apple 100$/year, even if your apps are free... further apple will get money from at&t or other operators in other contries, when you use your iphone to navigate on the internet, to get your apps... also, many apps use the internet in one way or another because apple restricts what apps cand ddo on your phone, and that means more traffic, more money to the operator and more money to apple... also there's a reason why you cant normally copy and/or save pdfs on your ipads: apple wants you to buy books through ibooks..
that's why the iphones are locked, not because of viruses, but in order to secure apple's monoply over virtually everything that you have on your iphones, ipads and so on... fortunately, that doesn't apply to ordinary macs... not for now at least, but who knows... many apple fanboys would love that same kind of restrictions on macs (probably because, many mac users - at least many of those that write on these forums - are somehow involved in the creation of "intellectual property" and such restrictions seem to be beneficial to them)
Tell me, what horrible thing has Apple been doing to jailbreakers? Hmm? Have they come in and confiscated phones? Does it levy fines? Bash down your door and steal your computers? No. They've sent a few lawyer's letters, but just to make the cracking software less visible. It hasn't gotten in the way of people who want that. Any fines? Any jail time? No.
So now it's legal. Big yip. It still means finding and exploiting security holes to override the prohibition on unsigned software. Which gives you things you may like, but they are a pain for the rest of us. Thanks, genius.
But it's okay! This will mean that Apple will pay more attention to security! Everything is for the best in this best of all possible worlds!
Hey, go hack a Droid X. You know, they're free, and open and everything. Go ahead.
What a stupid idea of "freedom" you have.
By finding and exploiting a flaw, the jailbreakers give Apple no choice but to close the security hole. Do you think the world is your little playground?
Do you think the "freedom" you want will ever take responsibility for the hacker who gets a rootkit on the iPhone to steal your banking information? Security researchers poke around for holes and report them.
How does this solve a vulnerability in Adobe's PDF? Devoting more manpower to fixing exploits is the solution to this stuff.
Don't tell me that with file system access and root I'd be able to waste a weekend compiling and installing alternative services and libraries and applications. I don't care if I can do it, I don't want to. I don't have the time to do it even if I did. If that's your cup of tea, go nuts. But you can't expect to be the focus of a multi-billion dollar corporation.
I buy a device to solve problems, not create new ones.
I like my iPhone precisely because it doesn't act like a simple miniature computer. If it did I'd get something else. Computers, by and large, suck. I rather enjoy the fact that it acts like an information/communication appliance instead of a general-purpose PC.
the rest of ... who? content creators?
no person that is sane and has at least average intelligence wants to have a device locked against them... security can be implemented in such a way, that it can prevent malware from running but at the same time it allows the owner of the device to override any kind of restriction... and that's how ordinary os x on mac works, or even more recent versions of windows (for example windows 7 checks for driver signing and won't install unsigned drivers by default, but you can turn that off with admin rights and a few commands)
The fact that it allows someone to run unsigned code on the device is entirely Apple's fault.
There is no flaw in PDF - not that Adobe actually controls the standard like that anyway.
Your sarcasm detector is failing. I was just mocking at people who think that Apple develops secure operating systems/soft. I don't have anything against Apple selling closed soft and hard, I just wish security were more important to them.
I used the Jailbreak for only one reason.
Apple made a move in the right direction with iOS4 and introduced features like wallpaper, folders, multitasking that, for the majority of users, eliminated the main reasons for Jailbreaking. ( Apart from those who want to steal apps, they will always be around )
I ran the jailbreak for only one reason, WIFI tethering. I was outraged that OPTUS in Australia wants to charge $10 a month just to unlock tethering. $10 a month to use the data I have already paid for!! Apple should be using their strong position to make these features totally available and unable to be locked out by a carrier. If I had this enabled I would not even Jailbreak. There would be no need.
So I hope Apple continue to add the features to the iOS to reduce the incentive to Jailbreak. But for now, I am enjoying using my phone as a portable WIFI hotspot.....
Apple made a move in the right direction with iOS4 and introduced features like wallpaper, folders, multitasking that, for the majority of users, eliminated the main reasons for Jailbreaking. ( Apart from those who want to steal apps, they will always be around )
I ran the jailbreak for only one reason, WIFI tethering. I was outraged that OPTUS in Australia wants to charge $10 a month just to unlock tethering. $10 a month to use the data I have already paid for!! Apple should be using their strong position to make these features totally available and unable to be locked out by a carrier. If I had this enabled I would not even Jailbreak. There would be no need.
So I hope Apple continue to add the features to the iOS to reduce the incentive to Jailbreak. But for now, I am enjoying using my phone as a portable WIFI hotspot.....
I haven't buy any iphone without jailbreak software. Because there is lack of apple software in our region and most of the applications are unregistered with apple.
I don't store important information at my iphone, but I really hate the idea that someone can break to my phone easily AND take CONTROL of it?? That is ridicules
I don't store important information at my iphone, but I really hate the idea that someone can break to my phone easily AND take CONTROL of it?? That is ridicules