[liberationtech] Recent iOS privacy checks
Todd Weiler
tweiler at operamail.com
Tue Jul 8 05:29:04 PDT 2014
There probably was not much doubt on this list to begin with, that users
care enough about privacy to handle making calls on more fine-grained
privacy controls. It's good to see the design choices of these kinds of
decisions explored so thoroughly.
As for the remote EFI reset password, that looks ripe for abuse.
On Tue, Jul 8, 2014, at 05:19 AM, Keira Cran wrote:
> I would caution on being too optimistic about Apple software in
> general: every once in a while a design decision completely
> surprises me as to what security guarantees it provides.
>
> A case in is Apple's ability to remotely reset the EFI password
> on your macbook.
>
> [1]https://twitter.com/hackerfantastic/status/486109963916701696
>
> Let's hope this doesn't spark a surge of people rushing to the
> nearest istore.
>
> On Tue, Jul 8, 2014, at 02:15 AM, Amin Sabeti wrote:
>
> Thanks for sharing the blog link.
>
>
>
> On 8 July 2014 09:25, Cody Tarrant <[2]cody at xsmail.com> wrote:
>
> Dear all,
>
> As a newcomer to iOS, I was pleasantly surprised to see such a
>
> fine-grained check, to see if the user will allow sharing
> location.
>
> [3]http://mine.sent.as/ios8-perm-screenshot.jpg
>
> Looking further, I came across an excellent blog post
> discussing all
>
> these permissions in iOS8 here:
>
> http://lmjabreu.com/post/ios-8-privacy-updates/
>
> This should put to rest any doubt, that users would not want to
> wield fairly fine-grained control over their privacy, and that such
> control cannot be provided without great difficulty to the user.
More information about the liberationtech
mailing list