Visitors can check out the Forum FAQ by clicking this link. You have to register before you can post: click the REGISTER link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. View our Forum Privacy Policy.
Want to receive the latest contracting news and advice straight to your inbox? Sign up to the ContractorUK newsletter here. Every sign up will also be entered into a draw to WIN £100 Amazon vouchers!
There's a video on the BBC site about the security holes.
Security Hole, singular. Passcode Bypass, again. Limited impact, easy interim fix till it's patched and only allows access to mail photo or twitter Apps if they were active at the time the phone was locked.
Not saying it's not important, it is. But it's not necessarily the gaping critical flaw that that some have been reporting it as.
On the plus side they have now enabled remote lock and remote wipe as standard in the OS, so if you phone does get nicked or lost you can:
a: Find it quickly,
b: Lock it to stop others getting access (not affected by the passcode flaw) and
c: completely wipe it and reset the phone if it is critical it not be used by others.
"Being nice costs nothing and sometimes gets you extra bacon" - Pondlife.
1. Siri can put it into airplane mode, so that the remote lock / wipe doesn't work.
2. You can access the email and social media from the lock screen, unless you change the default option.
Holes, plural.
1. Or you can switch it off, so the remote wipe doesn't work, or you can take the sim out, so the remote wipe doesn't work, or take it somewhere with no signal, so the remote wipe doesn't work. The first two of which are probably quicker than mucking about with Siri anyway. As soon as you turn it on again, or get a signal, or put a new sim in remote wipe starts working again and if the lock or wipe commands have been issued then they take effect as soon as the phone comes online again. If you leave it in airplane mode then nothing works anyway other than using it as an iPod. This one is a non-issue.
2. Not a hole, just a poor configuration choice. Turn of Siri access to the control panel functionality from the phone settings and it's not an issue. Users choice whether to allow it or not, there are plenty of circumstances where you would want to use Siri to do stuff without having to physically handle the phone to unlock it. (Driving, Cycling, don't have a hand free or time to stop and get the phone out to type.)
If the phone has been stolen then issuing the remote wipe stops the thief using Siri to bypass the lock screen anyway.
2. Not a hole, just a poor configuration choice. Turn of Siri access to the control panel functionality from the phone settings and it's not an issue.
Which is what people are being advised to do, because the default configuration that Apple provide (which they will release a fix for) is one which gives people access to things that they aren't meant to have.
If it's not a hole, then why are Apple fixing it?
Best Forum Advisor 2014 Work in the public sector? You can read my FAQ here
Click here to get 15% off your first year's IPSE membership
Comment