Apple Excommunicates iOS Cracker - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
Comments
Apple Excommunicates iOS Cracker
Newest First  |  Oldest First  |  Threaded View
<<   <   Page 2 / 2
TheUO
50%
50%
TheUO,
User Rank: Apprentice
11/8/2011 | 9:53:04 PM
re: Apple Excommunicates iOS Cracker
From the few details given in the article, he only made one mistake by failing to disclose the proof-of-concept app that he made and had passed through to the marketplace. Otherwise, he, apparently, disclosed the bug to Apple which should, in my mind, be paying him and giving him job offers for finding it. Sure, he didn't keep it "under wraps" like they always want, but hey, they can now address this serious bug, which in the wrong hands could have really made Apple look bad given their persona of it always working flawlessly all the time with no vulnerabilities. Treating him like this will probably just make things worse for them, should he get disgruntled and turn malicious. He already has a good history of finding seriously fatal flaws, what if he's upset enough to take the black hat route next time he finds one? Sometimes it's better to take the "high road" and admit your deficiencies as opposed to always attacking those that bring them to light like they are the ones in the wrong.

Yes, he could have probably handled it better and disclosed what he was planning before he did it, but in that case, I'm sure they would have just shut him down before he could have had a chance to test and release it, which is typical Apple. They would rather squash and silence it than admit there's a bug. This would have left it open for more malicious people/groups to find and exploit it for real, with real world repercussions. So, they'll just punish him instead of taking the time to learn from him or offer to let him teach them a thing or two because, God forbid, something bad is disclosed to the public about anything Apple related.

In addition to that, public disclosure of bugs should keep Apple's programmers from becoming complacent with the idea that everything they make is bug free. As a programmer, I know that the majority of code out there has vulnerabilities, I find them in mine, and if you're confident that your code doesn't contain any, that's when your most likely to introduce them or let one slip through...

My personal opinion: Give that man a medal and tell your QA department to make him an offer he can't refuse.
Tom LaSusa
50%
50%
Tom LaSusa,
User Rank: Apprentice
11/8/2011 | 8:42:09 PM
re: Apple Excommunicates iOS Cracker
I can understand Miller's frustration to a degree, but he also has to realize that's the contract he signed with Apple. If I went to work for a company that enforced a policy of no bow ties and Fez hats, and I wore them because I thought the policy was dumb, I don't get to gripe when I get the call from HR to pack up my stuff.

You go to work for a company, you agree to their rules. If he wants to show people that Apple devices have a myriad of security holes (a noble thing to do) then he should stop working for them.

Tom LaSusa
InformationWeek
YMOM100
50%
50%
YMOM100,
User Rank: Apprentice
11/8/2011 | 6:08:50 PM
re: Apple Excommunicates iOS Cracker
Hmm, piss off a hacker that was trying to help......

http://bit.ly/dI3hcF
<<   <   Page 2 / 2


2020 State of DevOps Report
2020 State of DevOps Report
Download this report today to learn more about the key tools and technologies being utilized, and how organizations deal with the cultural and process changes that DevOps brings. The report also examines the barriers organizations face, as well as the rewards from DevOps including faster application delivery, higher quality products, and quicker recovery from errors in production.
News
How COVID is Changing Technology Futures
Jessica Davis, Senior Editor, Enterprise Apps,  7/23/2020
Slideshows
10 Ways AI Is Transforming Enterprise Software
Cynthia Harvey, Freelance Journalist, InformationWeek,  7/13/2020
Commentary
IT Career Paths You May Not Have Considered
Lisa Morgan, Freelance Writer,  6/30/2020
Register for InformationWeek Newsletters
Video
Current Issue
Special Report: Why Performance Testing is Crucial Today
This special report will help enterprises determine what they should expect from performance testing solutions and how to put them to work most efficiently. Get it today!
White Papers
Slideshows
Twitter Feed
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Sponsored Video
Flash Poll