...
Now can we please stop making these types of posts? ...
If you don't trust Apple, then don't lend them the freaking phone. That's not like they can remotely access my phone.
Those aren't the problem. It's that Apple refuses to open its code to the Government and let it build its own iOS system.
Actually, I am glad that Apple keeps this capability to itself.
I always love how everyone always freaks out about these kind of things... OMG Apple may be back-dooring my phone and they may know that I spend way too much time playing Monopoly slots, sent a few texts, made a few phone calls, allegedly may have looked at some pron, and that I read a lot of MacRumors!!!
LOL didn't read.
1. com.apple.mobile.pcapd
pcapd supports diagnostic packet capture from an iOS device to a trusted computer
2. com.apple.mobile.file_relay
file_relay supports limited copying of diagnostic data from a device.
3. com.apple.mobile.house_arrest
house_arrest is used by iTunes to transfer documents to and from an iOS device
Not a single one of those uses is a legitimate reason for storing personal data unencrypted and allowing access to it when the user has enabled encryption.
Call me an Apple fanboy or whatever, But I 100% (more realistically around 92.8%) trust Apple.
I know Steve Jobs cared 100% about this company. The man stopped working only when it was physically impossible for him to go to work. I heard he even was talking about the iPhone 5 a day before he died to Tim Cook.
I know I know I shouldn't compare Steve to Tim. But I also believe Tim cares just as much as Steve did about Apple. They are honest and truly care about its products.
Im lovin their transparency now!
If you make that above post, then you know you're a Google fanboy.
Now can we please stop making these types of posts? This is probably the new "Safari is snappier" type of posts. Take any front page post vilifying Apple, change the headline to Google and then mention how Apple fanboys will be pissed, will take a negative tone and then will promptly **** their pants.
What, exactly, does a story on iOS security and the data Apple mines from you have to do with Politics, Religion, Social Issues... then Mac Rumors? Or did you want to control who could post on this topic?
Here's the thing. If you don't trust Apple about what these services are for, you might as well not trust them with anything, since you are carrying around a phone with a camera, microphone, GPS, near mandatory network and cloud services that you type personal things in all of the time. So if you think Apple is outright lying about 1 thing, you might as well not use any of their devices at all.
What does it say about Andriod fans when they don't know the difference between your and you're.
Your sentence is missing a question mark. You spelled Android incorrectly. What does that say about you?
I think Apple knows what kind of scrutiny they are under (fair or unfair, you have to admit it's extreme) and so are unlikely to lie about something like this. Can you imagine the headlines if one of these security researchers actually proved that something they said wasn't true? Right now all we have are accusations, which are a dime a dozen. Tim Cook burps at lunch and there are conspiracy theories on the internet within the hour.
I think Apple knows what kind of scrutiny they are under (fair or unfair, you have to admit it's extreme) and so are unlikely to lie about something like this. Can you imagine the headlines if one of these security researchers actually proved that something they said wasn't true?
Call me an Apple fanboy or whatever, But I 100% (more realistically around 92.8%) trust Apple.
I know Steve Jobs cared 100% about this company. The man stopped working only when it was physically impossible for him to go to work. I heard he even was talking about the iPhone 5 a day before he died to Tim Cook.
I know I know I shouldn't compare Steve to Tim. But I also believe Tim cares just as much as Steve did about Apple. They are honest and truly care about its products.
Im lovin their transparency now!
As long as these three holes can't be exploited without my phone and 'trusted' computer, I can care less. I have nothing on my phone except a bunch of pictures of someecard crap. Wow, you hit the jackpot buddy!
As long as these three holes can't be exploited without my phone and 'trusted' computer, I can care less. I have nothing on my phone except a bunch of pictures of someecard crap. Wow, you hit the jackpot buddy!
Each of these diagnostic capabilities requires the user to have unlocked their device and agreed to trust another computer. Any data transmitted between the iOS device and trusted computer is encrypted with keys not shared with Apple. For users who have enabled iTunes Wi-Fi Sync on a trusted computer, these services may also be accessed wirelessly by that computer.
LULz. The concerns highlighted are far from the biggest ones. There are much simpler ways to gain access to the iPhone to pull data and have been since it's initial release.
Any service with the name "house_arrest" raises some red flags.
That means your iOS device is still hoarding all sorts of personal information without your knowledge and consent, even though you're not sharing it with Apple. The info can be retrieved illegally and/or with legit forensic tools.
So, Apple needs to step up there and have a simple option to disable all diagnostic information, period. I don't care about legitimate users for these services, they're not required and they're storing information I don't want iOS to store in the first place that's not encrypted with my passcode.
This doesn't sound legit. Even if these genuinely are not meant to be backdoors, these are still three security holes that they show no sign of fixing.
I tend to believe Apple when they say they didn't install these services for nefarious purposes. But it doesn't change the fact that they expose way more information that is needed for the stated purposes, and that they are not well protected.
Never trust anything 100%. I don't even trust my wife 100% of the time. Hell, I don't trust myself 100% of the time.
Those aren't the problem. It's that Apple refuses to open its code to the Government and let it build its own iOS system.
Actually, I am glad that Apple keeps this capability to itself.
Those are only Apple's legitimate uses for it, which really have nothing to do with the security flaws themselves.
...
There has been no proof from this forensic person what exact stuff this picked up on.... he just says "Documents" and other data. ok, but what in particular ?
He can go into detail about he found a problem, yet he can't point out what he found?...