|
|
No worries - not entirely so
Yes, SSH traffic is supposed to be secure. But, you CAN intervene between a host and client; as long as the client thinks it's connecting to the host; and the host to the client.
How Apple could fix it (and open it)
Hi!
How Apple could fix it (and open it)
There is a golden opportunity for Apple to distribute a public key for validating future Software Update releases: Jaguar. Assuming it's like 10.1 where they are going to distribute CDs, they could include it in the Jaguar CD and install it by default.
For that matter, since openssl is already installed by default, they could also switch Software Update to use SSL-encrypted communication, which would allow them to use the public key to validate the update server, in addition to the packages once they're downloaded. They could also have a public key and a new version of Software Update for download at their website (https, of course, so it can be verified to be Apple). -Esme |
SearchFrom our Sponsor...Latest Mountain Lion HintsWhat's New:HintsNo new hintsComments last 2 daysLinks last 2 weeksNo recent new linksWhat's New in the Forums?
Hints by TopicNews from Macworld
From Our Sponsors |
|
Copyright © 2014 IDG Consumer & SMB (Privacy Policy) Contact Us All trademarks and copyrights on this page are owned by their respective owners. |
Visit other IDG sites: |
|
|
|
Created this page in 0.19 seconds |
|