[Dailydave] Weev's collateral damage.
Jeffrey Walton
noloader at gmail.com
Wed Nov 21 13:24:36 EST 2012
On Wed, Nov 21, 2012 at 12:05 PM, Dave Aitel <dave at immunityinc.com> wrote:
> http://www.wired.com/threatlevel/2012/11/att-hacker-found-guilty/
>
> So I'm no fan of Weev aka Andrew Auernheimer. The man is seriously disturbed
> and it's odd to see people support him on Twitter....
Agreed.
> I think it's fair to say the likelihood of Weev having done something that
> deserves some level of criminal liability is pretty high. That said, this is
> not it. Keep in mind the data Weev collected was email addresses and names.
> Nothing sensitive in the slightest. Everything they collected was
> essentially sent in cleartext over the Internet at some point.
Right. Apple deployed a defective system and gave the information away.
I'm convinced Apple has nearly no security except that which is
incumbent to the BSD core. I'm stall amazed they are doing updates
over HTTP (up to Mac OS x 10.7.5). Hint: before the signed patch is
fetched, a catalog is fetched.
Jeff
More information about the Dailydave
mailing list