Secrurity Issue With Software Upate.

Discussion in 'Mac Apps and Mac App Store' started by nerveosu, Jul 8, 2002.

  1. nerveosu macrumors member

    Sep 17, 2001
  2. ShaolinMiddleFinger macrumors 6502a


    Oct 12, 2001
    oh wow..... i never thought of it that way...... it said it affected OS X, I wonder if it affects OS 9, too.....
  3. eyelikeart Moderator emeritus


    Jan 2, 2001
    Metairie, LA
    interesting how the alleged "hacker" is talking so openly about this??
  4. Choppaface macrumors 65816

    Jan 22, 2002
    the same goes for people who find holes in microsofts stuff. if holes are kept quiet, then a company might put it on the back burner, and then something really bad could happen when people start sharing secrets. putting it all in the open gets the company to fix stuff that needs to be taken care of.

    I'm really surprised by this because I always assumed that software update used some sort of secure means of transfering files and checking for updates. thats why I haven't been doing it manually. this is really disappointing.
  5. Geert macrumors 6502a


    May 28, 2001
    Same here, thought that it was a secure link.
    But what's the difference between automatic and manual?
    Anyhow you send a request that can be intercepted.
  6. sparkleytone macrumors 68020


    Oct 28, 2001
    Greensboro, NC
    if this is truly a problem, then it really could be fixed easily. altho people would scream, apple should require a account in order to use software update. then it could use an https:// address to download all updates etc. You would have to login using your iTools account, which could still be automated (have it remember and not ask). This would basically eliminate the problem. If you didn't want to send all that info to Apple, just wait for the packaged update.
  7. blackpeter macrumors 6502a

    Aug 14, 2001
    That's the true nature of any good hacker. The Unix OS is as strong as it is because of white hat hackers, like this one, who strive to make the system better. These guys are much closer to the real definition of "hacker" than the malicious pranking geek.

Share This Page