Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Apple Says 'KRACK' Wi-Fi Vulnerabilities Are Already Patched in iOS, macOS, watchOS, and tvOS Betas
- Thread starter MacRumors
- Start date
- Sort by reaction score
Sure there is "no way" when you have a defeatist attitude like that. People have gotten lazy with a rush-it-out-the-door we-can-fix-it-later policy. I fundamentally disagree with that way of doing business and fundamentally disagree with you that stuff cannot be gotten right in the first place. Don't buy that for a second.
Again, this stuff has to be done right the first time for the simple reason that we are leaving a wreckage of swiss cheese vulnerability holes behind us as more and more products end up out there in the marketplace that will never be patched.
Ok, I’m one of those “grammas” being talked about on here. I’m a very good user of my iPad/Mac but don’t understand a lot of what you are saying here. I do understand that my iPhone/ipad/Mac will get updated but my Sony Smart tv/Pioneer Receiver/printer will not. And so what I don’t understand is...without updates to those devices not updated, will that make banking information that I enter on my (updated) MBP, subject to be hacked?
I think if you re-read my post, you'll see that I'm quite clear that I do NOT expect security updates "forever." It's definitely a line-drawing problem. But what you are characterizing as "over 4 years old" I would say is more like 2 because that's when they STOPPED selling the iPhone 5c - in sept 2015.
So yes, I do expect them to offer basic security patches for products that were still being sold new in Apple stores 2 years ago, no matter when those products were first introduced.
Now, exactly how far back should they go? I'm sure reasonable minds could differ... We'd probably all agree it isn't reasonable to expect a patch for the handful of iPhone 2g units out there still acting as daily drivers on iOS 3, but it doesn't therefore follow that we cut off every OS prior to the current one. Millions of people still use A5 and A6 devices on a daily basis. I think it's not asking too much to ask Apple to patch back to iOS 9, but 10 at the absolute very least.
Remember, we're talking a little coding to patch a single vulnerability, not some custom built lite version of iOS 11 or anything like that. One bug fix. It's honestly just not that big of an ask.
The vulnerability I believe is due to the ability to reuse an encryption key, this can be fixed at the device (don't reuse encryption keys) or the router (don't accept previously used encryption key).
Or to put it another way, will there be a specific patch released for just this issue before the current betas make their way to the general public?
Not sure,, but usually Apple prefers to support one OS lower not two.. at least... based on history... It *would* give Apple an reason to say "upgrade"
When u can't even download El capitan anymore from the App Store... its on its way out.
That’s fairly melodramatic, and definitely unreasonable. If they have a moral obligation to keep all of your iOS devices safe, forever, then I also want my original iPhone updated as well. Otherwise it’s not fair!
Hang on...just off to check that I do in fact have a birthright to everything I want. BRB.
If this to be true: sad.
Are you sure? A few days ago I saw El Capitan in "purchases"
I know. As I said, it was just an interesting sidenote on 32-bit technology. There's no need to defend your position; I wasn't disagreeing with you.
This sentence doesn't make sense, specifically the bolded part.
Sometimes I think yes.
I can't and I won't buy their new Macbooks, I do not understand their software update policy and quality management anymore. I think that this was better a few years ago, when 10.6 was brand new.
Only if you have downloaded it before, and it is hidden, I spent three hours looking for it and Sierra on machines last week Thursday, if you did not download it before you cannot now.
The idea of connected home is scary in case of this. So much points of failure when you need an OS to all of these devices
Tell that to someone who bought a new iPhone 5c just under two years ago? I get where you're coming from, but I think there is an obligation to patch such a serious vulnerability for a device that's been off the market for less than two years. I predict that Apple will come through with a patch for iOS 10.x.
I wouldn't panic just yet. The tech industry is still wrapping their heads around this issue. As devices receive patches, the focus will turn to devices that are not being patched, and in turn what we should do to minimize or mitigate risk from those unpatched devices. I actually predict that this is a serious enough issue to motivate manufacturers to patch a lot of smart devices released in recent years, but it may take a little while.
In the meantime, just update promptly when your Mac/iPad/iPhone offers you an update.
The title is completely misleading. Apple has not "already patched" the vulnerabilities. Fixing a bug in a beta release DOES NOT qualify as having shipped the fix. The vulnerability is not fixed until said beta is released.