Slashdot Mirror

Considering Apple includes a security co-processor it's not actually that easy. Touch ID wrapped keys are discarded after reboot, 48 hrs, or 5 failed attempts. This authentication method can also be disabled or never activated by the user.

Additionaly the root keys are only held in the co-prossesor and co-mingled with a UID (which even apple doesn't know) as well as the password. You can't begin a dictionary or pin attack without pulling out that UID (and cosidering the co-proccessor is running L4, the only way I know to do it is use nano-meter scale probes to spy on the hardware as it operates. The root of the file-system is encrypted by a key held only in the security co-processor, and the comingled password is used in a sort of chain of trust with the hardware key to secure file-metadata and per-file encyprion keys.

The firmware is designed to resist brute force, and apple fixes every known vulnerability to brute-force it discovers. The update mechanism requires the user password and cannot be rolled back to a prior vulnerable version, So apple can't provide a targeted device update to enable brute-forceing. At best the forensic team will have to sit on the device and hope a new vulnerability is discovered, and hope the data erase after 10 failed attempts was not enabled by the user.

https://www.apple.com/business...

Microsoft's 1TB Surface Book will cost you $3199 (plus tax), which seems a bit steep to me.

And people whine about Apple gouging for "commodity PC hardware"?

My God, the most expensive MacBook Pro will only set you back $2499. The equivalent Surface Book costs $200 more, but it still has the same integrated Intel GPU as the MBP.

And of course the MBP has an OS that both respects your privacy and knows that its a Desktop OS.

But I guess if you are trapped into the MS ecosystem (which you could also run on an MBP, if you wanted), then the 1TB Surface Book may be what you want... When it finally ships in January, 2016.

By the way, it seems like spec for spec, the MBPs and Surface Books are priced pretty closely; so maybe, just maybe, Apple hasn't been "gouging" all this time, and it really does cost a little more to up the build and component quality, eh?

They are not using Mach, the microkernel part, to do any of that shit. For example, they are not using it to do process management. That's done by the kernel, not the microkernel.

You seem a bit confused - there's no "microkernel" in XNU, it's one unit separated into layers. Processes and threads are implemented as Mach tasks and threads, and managed by the Mach scheduler.So processes are handled by the kernel, yes, but they are handled by the "microkernel" part of the kernel.

See: Mach Scheduling and Thread Interfaces

For point 3, there are apps to help with that. Personally, I use this one. I also have an Android app that also records how much sound one makes (eg. snoring, which can be bad).

It can definately help, for the rest of the day, to wake up when sleep is the shallowest.

> OSX uses a microkernel.

Not really. It uses the low-level stuff from Mach (process scheduling, memory management, threads, VM) but it's compiled in with the BSD/Posix layer and doesn't implement its device drivers as user-space servers; its drivers are kernel modules that run in kernel space.

See: OS X Kernel Architecture

Except operating system updates that render the device unusable without a factory restore/reset.

Two of many:
https://discussions.apple.com/...
http://9to5mac.com/2015/09/18/...

iOS users love their pointing and clicking, apparently. I spend time on the keyboard, and without a reason I don't want to touch the mouse. Is there a distro that does that well? Sure, if you're a Linux user, but I'm not.

Assuming you meant OS X, and not iOS:

OS X is EXTREMELY keyboard friendly, in addition to being able to define your own Keyboard shortcuts for ANY Menu Command, both Globally and on a per-Application basis, you can ALSO use the PLETHORA of already-defined Keyboard Sortcuts, Including a full set of mouse-movement and full keyboard navigation.

iOS users love their pointing and clicking, apparently. I spend time on the keyboard, and without a reason I don't want to touch the mouse. Is there a distro that does that well? Sure, if you're a Linux user, but I'm not.

Assuming you meant OS X, and not iOS:

OS X is EXTREMELY keyboard friendly, in addition to being able to define your own Keyboard shortcuts for ANY Menu Command, both Globally and on a per-Application basis, you can ALSO use the PLETHORA of already-defined Keyboard Sortcuts, Including a full set of mouse-movement and full keyboard navigation.

iOS users love their pointing and clicking, apparently. I spend time on the keyboard, and without a reason I don't want to touch the mouse. Is there a distro that does that well? Sure, if you're a Linux user, but I'm not.

Assuming you meant OS X, and not iOS:

OS X is EXTREMELY keyboard friendly, in addition to being able to define your own Keyboard shortcuts for ANY Menu Command, both Globally and on a per-Application basis, you can ALSO use the PLETHORA of already-defined Keyboard Sortcuts, Including a full set of mouse-movement and full keyboard navigation.

iOS users love their pointing and clicking, apparently. I spend time on the keyboard, and without a reason I don't want to touch the mouse. Is there a distro that does that well? Sure, if you're a Linux user, but I'm not.

Assuming you meant OS X, and not iOS:

OS X is EXTREMELY keyboard friendly, in addition to being able to define your own Keyboard shortcuts for ANY Menu Command, both Globally and on a per-Application basis, you can ALSO use the PLETHORA of already-defined Keyboard Sortcuts, Including a full set of mouse-movement and full keyboard navigation.

vocational school / tech schools have there place but lot's of them have become just get people in on to the loans that have no cap and take anyone.

I'm friends with the principal of a local tech school. They've almost broken that stereotype. He said he can't graduate highschoolers fast enough. They're learning internet security, coding, CNC, 2015 automotive repair. I sat in on one of his tech classes, 16 year olds had a better grasp of how CAN networking works and how to debug problems in engines than a lot of PhDs. I'm trying to talk him into opening the school part time as a MakerSpace, it has better equipment than I had going though college. (Oscilloscopes, CNC machines, 3D printers, etc).

These are the trades of the next century. It's why H1Bs are being hired into the spot, a lot of these jobs don't need someone with a masters degree. They need someone that has been training to do it since they were 14-15. It's still how Germany structures their school system.

Not everyone needs to go to university. They have 21 century trades. It's why Simulator games are a huge hit there.

"Even though the average purchasing power is very different between say the UK and Poland, we actually sell more copies in Poland than in bigger Western Europe countries," he notes. "We also have lots of fans in developing market countries like Brazil or Turkey, and incredible number of players in China, but it's really hard to actually sell any games in those markets."

Meanwhile, the Farming Simulator series is a very similar story. Marc Schwegler, associate producer at Giants Software in Germany, tells me that the main audience for its annual farming series is kids, especially boys who love tractors. Oh, and farmers, of course.

Kids that grow up playing 'stupid simulation' games will be trained to run a fleet of automated trucks or tractors. We already see military implementation with drones. Doctors are starting to do it with DaVinci. You could work anywhere with fast enough internet. There are still things that require a human, we have the technology such that the human doesn't need to be where the actual process is going on.

IT is already doing it with support Apple and other companies have house moms with VOIP answering tech support questions.

OS X COULD have been a serious competitor, if Apple would sell it and allow you to install it on whatever you want. I'd have given it a serious look years ago if they had done that, but Macs are just so expensive that it isn't worth considering, which is why it has 5% of the market, give or take. That also won't change unless they change their prices/hardware policies. So you have a defacto Windows monopoly. There ARE other choices, but not ones that give you the kind of choice that we COULD have if we had competition that had 25% of the market. If OS X could get to 25% of the PC market, you'd see serious development for it and then you'd have real competition. At 5%? Not really..

How many years will it take to dispel the "Macs are SO expensive" Meme?

Feature for feature, spec for spec, it has been proven time and again that Macs are often equivalent, sometimes marginally more expensive, and sometimes even cheaper than other "reputable brand" "Wintel" PCs. "White box" DIY systems don't apply; because they have no "added value" costs. And in the case of OS X, we're not talking about a drive stuffed-full of Crapware; but rather (no flames, please!), at least moderately-useful-to-many-Users' Applications.

Sure, Windows is slowly-but-surely "catching up" with SOME of that stuff; but nobody else still ships an OS that comes pretty much read-to-use out of the box.

So, at least some of that stuff has value.

I could go on, but it's just going to generate more hate-posts, and people crowing about how they can put together some shitbox, no-warranty desktop computer for 3 cents that blows the doors off of a Mac Pro, blah, blah.

But one thing the DIYers can't really do is laptops. And that is one market where most reasonable people agree that Apple rules.

Well according to Apple (scroll to the very bottom to see the disclaimer) it is only available to US users. However it was mentioned at WWDC that the UK and Australia would be getting the app as well.

https://www.apple.com/hotnews/... (A bit old, but probably still relevant.)

Versions I use:

iPhone: https://itunes.apple.com/us/ap...
Android: https://play.google.com/store/...
Windows: https://ninite.com/keepass
Linux: http://keepass.info/help/v2/se... - Mono supported

More versions (official and unofficial at: http://keepass.info/download.h... )

Without Dropbox access to dropbox, you could use others: Onedrive, Google Drive, Box, etc... whats available largely depends on whats allowed (or just not yet blocked yet). Also, options MIGHT be expanded with plugins: http://keepass.info/plugins.ht...

Keepass allows plugins... one of which has Two Factor: http://keepass.info/plugins.ht... - I've never used it, so I'll leave it up to you. Other options exist on at the plugins link above.

cool until the updates make the old versions unusable ( typing on ipad 2 whose browsers are all crashy messes since the iOS9 update)

Have you filed any bug reports with Apple, or just bitched online?

BTW, that Page took all of 1 second of Googling to find.

You can easily view the data, parsed out, using an app like Boarding Pass Scanner (iOS). You can use a generic barcode scanner as well, but it won't parse the fields properly. The standard allows for a cryptographic signature, which can be validated so that you know the data isn't modified, but indeed, the data is not encrypted.

All the companies provide options.

Android doesn't work very well when you turn all the tracking off (ie: google now/voice commands). Microsoft hides the options and still sends some tracking home. Apple had their big fiasco sending all iphone WAP data home in plain text.

I wouldn't give anyone a free pass on this issue. Google is the only company that's main business model is based off of this data though.

All "fandom" aside, I really do think that Apple is the only one of the three that honestly isn't trying to actively data-rape it's Users.

And to set the record straight, Apple made a clean breast of the Location Tracking info's raison d'être, what was in it (cell and WiFi hotspots), what it was for (anonymous crowdsourced location data), how it was never sent outside of Apple without the User's express permission EVERY TIME, and the steps taken to improve the security (encryption, and the ending of backing up in iTunes) and reduce the size of the "Location" database stored on the device.

So, Apple's explanation "feels" like an honest description of something (crowdsourced location data) that a bunch of geeks would dream up to solve a problem (slow response when the USER asked for the current location of the Device). Or else why wouldn't it simply be a "bread crumb trail" of a SINGLE Location (the Device's current computed Lovation?), instead of a "tile's" worth of Location data of pretty-much everything BUT the Device???

Just as a software defined datacenter still needs lots of hardware. This is the same definition of software defined. There is plenty hardware available, But instead as using it as"just hardware", or "just a battery" you optimize it as it is used.

e.g. A Li-ion battery has more wear and tear if it is stored at 100% charge. So you only top it off if you expect the user to unplug it soon. (e.g when charging the phone in the night, you to it off an hour before wakeup).

If there are multiple batteries, with different parameters you can optimize for those parameters. And this is a "free"optimization. You get a few percentage extra capacity in the long run, just by exposing the batteries to the OS.

But you should not expect big leaps from this. Batteries are used in portable devices, which are weight and space contrained. with other words: they will have minimal specification.

There is already a bunch of back-and-forth between battery charge, user-demand, and the OS in a modern OS with advanced energy management such as OS X. I'm not sure what voodoo MS has in mind over and above the Techniques already employed by Apple for their systems. And keep in mind that that whitepaper was written against a version of OS X now two major revisions old.

This "Software Defined Batteries" is nothing more than Marketspeak for efficiency-tuning techniques like Apple has been doing for years now.

You mean something like this?
Seriously... how did the 401K become the predominant retirement vehicle in the U.S., anyway? Does it REALLY make sense to expect markets to increase in value without limit, at a sufficient rate to keep retirees alive? Does it really make sense to expect every American to be a part-time investor, or expect commercial retirement funds to "do the right thing" and invest everybody's nest eggs wisely and successfully? Maybe pensions sound like "wasteful spending" these days, but they're a helluva lot better than grandpa knocking on the door, hoping to live at your place for the rest of his life 'cause the oil market took a hit (and your account ain't lookin' so hot either). And if anyone's a true believer in the trustworthiness of the financial industry, I URGE them to take your car title to to a title loan company, and enjoy a big spoonful of what the industry is ready to dish out.

The last day to buy a brand-new iPhone 3G from Apple was June 2010. The last iOS update was November 2010. 6-months of support, for those who bought them near the end of the run. Brand new phones, sold as the *only* iPhone available at the time, so I bought the newest, best available, and got about 6 months support on it. https://en.wikipedia.org/wiki/... https://en.wikipedia.org/wiki/... My Samsung got very little support. I didn't get a single version upgrade on it, and there were maybe two bug fix patches. What does get support is rooting Android and using a generic package. Though that option isn't available for iPhone, so you are left with phones abandoned the moment they aren't sold anymore.

Your particular iPhone 3G situation is an admitted Outlier. However, unless you are a total liar, you will have to admit that Apple's OS Update support for both iOS AND OS X is second to none.

The current, just-released version of iOS, 9.0.1, is compatible with iPhone 4s to 6s, iPad 2 to iPad Pro, and iPod Touch 5 and 6. OS X 10.11, El Capitan, also just released, is compatible with almost all Macs introduced since 2007.

And if you compare that sort of support with the Russian Roulette style of "Updating through Random ROMS" you are advocating for Android, you are either a liar or are delusional.

What kind of dumbass company is going to spend money porting a new version of an OS to an old platform, with no payday for doing so?

Mobile phone vendors make their money selling new phones. You want a new Android, get a new phone. Your contract will be up in 2 years, and at 18 months, you will be offered a new phone with early renewal, so just wait until the contract is up, re-up the contract, and get the new phone with the fix.

KTHX BAI.

Why, as shown by this chart, that most evil of evil companies (according to many Slashdotters), that's who!

I have a friend who had a 4 year old Mac laptop. He was big into recording his own music with ProTools. When he got a new iPhone 6, iTunes wouldn't work with it. He was instructed to upgrade Mac O/S, which did get his iTunes working but then broke ProTools. 4 years of recording work was lost unless he purchased a new ProTools license.

So what you're really complaining about here is a 3rd-party software package (ProTools) not working on a recent operating system release? How exactly is that Apple's fault? My company uses Quark XPress with a license server. Quark v8 (released 2009) no longer works with OSX Mavericks or above, due to a deprecated system library--OpenTransport--used by the license checkout client. OpenTransport has been officially deprecated since OS X 10.4 was released in *2004*. Quark was using a library deprecated for over 5 years. Quark's fault or Apple's that my software will no longer work with new computers?

I will also note that these kind of incompatibilities are, in my experience, very rare. Parallels and Quark are the only programs I have had issues with when upgrading OS. I still run Adobe CS1 on 10.10!

Another friend had a Mac Laptop old enough that she couldn't upgrade it to the current rev of Mac O/S. When she purchased a new Airport Express, the version of the Airport Utility on her laptop wasn't compatible. She had to borrow an iPad from a friend to manage the Airport Express, which is just a home router. Every other home router on the planet is managed through a web browser GUI, but Apple makes you use their proprietary utility and that's how it is with everything Apple. It's all proprietary and you pay through the nose for it.

This didn't sound quite right to me either, so I checked the Apple support site:

https://support.apple.com/en-us/HT201669

This appears to show that as long as you're running 10.5 or higher, you can manage every single version of the Airport ever released. I may be missing something, but this seems to cover it. I won't argue that it would be nice if the Airport had a web interface as well, but the client works just fine. It evens support syslogging to external hosts!

The Apple Developer Terms and Conditions DOES prohibit the release of Trade Secrets regarding "Pre-Release Materials", so yes, it is a de facto NDA, which iFixit clearly violated.

Congratulations-- this is the 23rd post in the thread responding to the comment "What NDA?" ...but the first one which has actually provided a link to answer the question, instead of just repeating the assertion.

If there was no NDA agreement signed, then the legal team couldn't do much.

They signed a Developer Agreement, and an additional Agreement when they got the Pre-Release AppleTV.

While I have not seen the Agreement that came along with the AppleTV Pre-Release "Kit", Apple's Developer Terms & Conditions clearly prohibit the release or discussion of Trade Secrets when it comes to "Pre-Release Materials", which clearly the AppleTV is.

MPTCP was not available on previous versions of iOS without some prodding. Basically, only Siri used it - now it is available for regular applications. And there is an API - https://support.apple.com/en-u... , without MPTCP applications will get ECONNRESET errors when connections are switched.

From TFA:

"A few days later, we got an email from Apple informing us that we violated their terms and conditions—and the offending developer account had been banned. Unfortunately, iFixit’s app was tied to that same account, so Apple pulled the app as well. Their justification was that we had taken “actions that may hinder the performance or intended use of the App Store, B2B Program, or the Program.”

AFAIK, "terms and conditions" should not equate to a Non-Disclosure Agreement (NDA).

Maybe someone was under the influence of dyslexia, and injected NDA into the discussion after seeing/swapping letters in "DNA"?

The Apple Developer Terms and Conditions DOES prohibit the release of Trade Secrets regarding "Pre-Release Materials", so yes, it is a de facto NDA, which iFixit clearly violated.

How do I inform Verizon and Motorola that I won't buy an android phone from them EVER AGAIN until they start supporting their products with security patches?

Adults vote with their feet.

Join the mass-exodus away from Android and toward iOS that is already well under way in Asia.

They even made it easy for you...

No, it's no secret that there is an NDA, if you have a valid Apple ID (may need to be a dev ID, mine works but I don't have any pay for any additional access) then you are presented with it as soon as you go to this URL: https://developer.apple.com/tv... . I think the URL is pretty descriptive about what it relates to.

No, the new model will be officially released later this month. iFixit tore down one of these.

They document it insanely well. Seriously, I just did a pretty large video streaming implementation. We implemented HLS before DASH because the docs were so good. Start here:

https://developer.apple.com/st...

"Touch ID doesn't store any images of your fingerprint. It stores only a mathematical representation of your fingerprint. It isn't possible for someone to reverse engineer your actual fingerprint image from this mathematical representation." https://support.apple.com/en-u...

Depends on the game and device. For example, the new AppleTV (tvOS) has an imposed limit of 200MB per app. Game developers are supposed leverage ODR . And yes, I know, not likely to be using an AppleTV on an airplane. But the point is that ODR in game development could, in theory, break your gaming stride if an internet connection can't update the dynamic content when needed. But perhaps if you stay in that one level or area, you're fine until an Internet link is established?? I'll leave that up to the game designers to answer if it's doable.

Resource Limitations

There is no persistent local storage for apps on Apple TV. This means that every app developed for the new Apple TV must be able to store data in iCloud and retrieve it in a way that provides a great customer experience.

Along with the lack of local storage, the maximum size of an Apple TV app is limited to 200MB. Anything beyond this size needs to be packaged and loaded using on-demand resources. Knowing how and when to load new assets while keeping your users engaged is critical to creating a successful app. For information on on-demand resources, see On-Demand Resources Guide.

Your app can download the data it needs into its cache directory. Data downloaded will not be deleted while the app is running. However, the data may be deleted while your app is not running and the Apple TV needs the space. Do not use the entire cache space as this can cause unpredictable results.

Depends on the game and device. For example, the new AppleTV (tvOS) has an imposed limit of 200MB per app. Game developers are supposed leverage ODR . And yes, I know, not likely to be using an AppleTV on an airplane. But the point is that ODR in game development could, in theory, break your gaming stride if an internet connection can't update the dynamic content when needed. But perhaps if you stay in that one level or area, you're fine until an Internet link is established?? I'll leave that up to the game designers to answer if it's doable.

Resource Limitations

There is no persistent local storage for apps on Apple TV. This means that every app developed for the new Apple TV must be able to store data in iCloud and retrieve it in a way that provides a great customer experience.

Along with the lack of local storage, the maximum size of an Apple TV app is limited to 200MB. Anything beyond this size needs to be packaged and loaded using on-demand resources. Knowing how and when to load new assets while keeping your users engaged is critical to creating a successful app. For information on on-demand resources, see On-Demand Resources Guide.

Your app can download the data it needs into its cache directory. Data downloaded will not be deleted while the app is running. However, the data may be deleted while your app is not running and the Apple TV needs the space. Do not use the entire cache space as this can cause unpredictable results.

I'm confused about all this.

iCloud Backup doesn't actually back up the app bundles themselves. It only backs up purchase history. When you restore a backup from iCloud, you are essentially redownloading the app bundles from the App Store in the process. This makes me wonder why they can't implement the app slicing functionality in that situation. Unless it has to do with data created by an app that may be missing resources for other devices? Not sure how that would be the case, but I'm not an iOS expert, just a seasoned user.

Source: iCloud storage and backup overview

Your iCloud backup includes information about the content you have purchased, but not the purchased content itself. When you restore from an iCloud backup, your purchased content is automatically downloaded from the iTunes Store, App Store, or iBooks Store.

> I don't trust ad blockers as they funnel web and/or other traffic through the developer's hollowed-out volcano.

LIES!

Well, for Apple this is lies. For many other places too. The content blockers in ios don't actually get access like you are thinking of.

https://developer.apple.com/li...

"Safari converts the JSON to bytecode, which it applies efficiently to all resource loads without leaking information about the user’s browsing back to the app extension"

So no, unlike an adblocker running as an executable on your PC, this is not that. The adblock extensions won't ever get to do anything with your data as long as this model is used by Apple.

The reason it's false in some other places is, just because a program or extension is running on your PC doesn't mean its doing the worst thing possible. Many are open source and can be inspected to see if they are doing something bad, for instance.

In general, you should trust ad blockers- certainly the ones that are free software. And if you are running Apple- which presumably you are if you commented in the manner that you did- then you trust Apple's proprietary software, so you should trust that no information about your browsing gets leaked to the ad block extension.

Most likely: With 'app slicing', when you download an app, it downloads only binaries for your exact iDevice model (sliced), instead of a binary for all iDevices supported by that build of the binary ('universal binary').

Looks like iCloud backup, though, simply backs up the entire memory state and apps as they are on your device ('device A'). Attempting to restore that backup now on another device (device b) will restore the same binaries that were backed up - which is fine if device b and device a would have run the same binaries anyway. But, of course, iCloud is designed as a cross-device migration, so for the first time, a backup taken from 'device A' won't work on 'device B' (assuming different enough types of devices).

As a work-around, Apple have disabled downloading 'sliced' binaries, so instead you download full (universal) binaries. This means the backups will have the universal binaries which will work on any 'device b'.

Further Information on App Slicing and App Thinning.

I ask because multiple sources confirm, split-view multitasking only works on iPad Air 2 and newer.

If it's working on your iPad Air 1, you must have one of those rare ones that lacks a mute slider; e.g. an Air 2.

I ask because multiple sources confirm, split-view multitasking only works on iPad Air 2 and newer.

If it's working on your iPad Air 1, you must have one of those rare ones that lacks a mute slider; e.g. an Air 2.

I ask because multiple sources confirm, split-view multitasking only works on iPad Air 2 and newer.

If it's working on your iPad Air 1, you must have one of those rare ones that lacks a mute slider; e.g. an Air 2.

Apple bought Beats to get their streaming licensing deals. The headphones were just a bonus.

Unfortunately, they got a bit more than they bargained for...

I would actually argue Apple is a trinity company:

* Hardware
* Software (What works + doses of innovation)
* User Experience (aka Branding)

This approach started back in the Apple days. Use as few parts as possible (to significantly reduce the raw cost of the final product far below what it costs the competition to make), jack it up to what the market will sustain, and sell the "brand" -- the complete Apple package. e.g. I never saw Microsoft with an Microsoft Care"

Apple's success is not only due to hardware, software, and user experience, but the psychology of marketing. Creating a brand that has a perceived value.

* http://apple2history.org/histo...

His original task on the disk controller was to reduce the chip count from the 40 chips used on the controllers for S-100 machines. In his redesign, he decided to use a single 8-bit ROM for tracking and reacting to the changing states of the disk controller as it decoded the bit stream being read from the disk. This concept eliminated more than a dozen of the chips used on the standard SA400 controller. Beyond that, he made additional design changes that reduced the total chip count to only nine. This eventually reduced further to eight, since two 555 timers were replaced by a single 556 timer.

And of course Apple didn't stop there. They kept pushing the aesthetics of their products to the non-techy user.

By controlling every single link in the chain they have been able to leverage their unique brand.

It seems as official as it can get, don't you think?

...and, from your carefully-manicured excerpts, it DOES seem to IMPLY that Apps from the Apple App Stores are "Safe".

HOWEVER, further down the page (which is about OS X's built-in security features, NOT either App Store), we have the disclaimer:

"While no system can be 100 percent immune from every threat, OS X lets you do even more to keep your information as safe as possible. [emphasis mine] "

So, that sounds more like what I was saying than what you were implying that they were saying.

And as for the second Page you referenced, "App Review", being that it was hosted on Apple's DEVELOPER site, that was obviously NOT meant as a Page for the "General Public"; but rather a Developer-oriented Page to explain TO DEVELOPERS how the Review Process works. So no "claims" are implied.

Nice try, but no phattie.

It seems as official as it can get, don't you think?

...and, from your carefully-manicured excerpts, it DOES seem to IMPLY that Apps from the Apple App Stores are "Safe".

HOWEVER, further down the page (which is about OS X's built-in security features, NOT either App Store), we have the disclaimer:

"While no system can be 100 percent immune from every threat, OS X lets you do even more to keep your information as safe as possible. [emphasis mine] "

So, that sounds more like what I was saying than what you were implying that they were saying.

And as for the second Page you referenced, "App Review", being that it was hosted on Apple's DEVELOPER site, that was obviously NOT meant as a Page for the "General Public"; but rather a Developer-oriented Page to explain TO DEVELOPERS how the Review Process works. So no "claims" are implied.

Nice try, but no phattie.

The very first thing Apple should do is admit that it is, in fact, possible for malware to get past their screening process.

This meme needs to FINALLY be taken out back and SHOT: As I said elsewhere in this thread; I don't think that APPLE has ever said that. Instead, it seems to be almost universally Fandroids that SAY that Apple (or their Users) have said that.

Okay, I'll byte: The safest place to download apps for your Mac is the Mac App Store. Apple reviews each app before it’s accepted by the store

Yes, that's about the Mac App Store. Do you want something about the App Store? No problem: We review all apps submitted to the App Store and Mac App Store to ensure they are reliable, perform as expected, and are free of offensive material

It seems as official as it can get, don't you think?

RT.

The very first thing Apple should do is admit that it is, in fact, possible for malware to get past their screening process.

This meme needs to FINALLY be taken out back and SHOT: As I said elsewhere in this thread; I don't think that APPLE has ever said that. Instead, it seems to be almost universally Fandroids that SAY that Apple (or their Users) have said that.

Okay, I'll byte: The safest place to download apps for your Mac is the Mac App Store. Apple reviews each app before it’s accepted by the store

Yes, that's about the Mac App Store. Do you want something about the App Store? No problem: We review all apps submitted to the App Store and Mac App Store to ensure they are reliable, perform as expected, and are free of offensive material

It seems as official as it can get, don't you think?

RT.

The name might be (although it's easy to change it to an arbitrary value in Settings -> General -> About and can't really be considered a unique value), but the identifierForVendor is not. It's only the same for apps with the same bundle ID prefix on a device (apps from the same developer). Different infected apps will have entirely different identifiers.

Does Apple actually allow you to run an app on your own iDevice without paying the $99 fee? I thought you had to pay it even if you were developing and testing on your own iDevice, not just if you wanted to distribute it.

The only time you have to pay $99 is to be able to SUBMIT Apps. With Ad Hoc Provisioning, besides being able to "Distribute" to yourself, you can even Distribute to up to 100 iOS Devices directly without involving the $99.

It's a pretty well-thought-out system, actually.

The usual method of getting developers to install a backdoored version of an IDE is to make them think they are downloading the legit one. Infect their computers, MITM them. The NSA/GCHQ have many ways to do that, and few developers bother to check file signatures (do Apple even offer them?)

Not only does they offer signatures, but the infected version of xCode will be refused by default unless you modify the default Gatekeeper setting. This is all the more ridiculous because you don't even need to register to download the legit xCode directly from Apple. And of course it's protected in transit by SSL.

Not sure what your FUD is.

[ Yeah, maybe GCHQ is clever enough to infect xCode and still pass Gatekeeper. But this case shows you don't really have to be that smart -- just tell users "you must click here to run this software" and they'll do it, even if that means disabling security checks. ]

Sign into https://developer.apple.com/do..., and click here