Linked by Thom Holwerda on Sat 9th Feb 2013 01:01 UTC
Apple "Over the last half a week, Apple has been hit with the largest mass-hacking incident in its history. And the perpetrators were the company's own users. Nearly seven million iPhone, iPad and iPod touch owners have cracked Apple's restrictions on their devices using the jailbreaking tool Evasi0n since the tool was released Monday morning, according to the latest count from Jay Freeman, the administrator of the app store for jailbroken devices known as Cydia. That makes the iOS-hacking app the fastest-adopted jailbreak software of all time, Freeman says." Because, of course, only nerds and geeks jailbreak. There's also a technical analysis of the jailbreak.
Thread beginning with comment 551982
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE[3]: I ssee both sides of this
by hackbod on Sat 9th Feb 2013 07:09 UTC in reply to "RE[2]: I ssee both sides of this"
Member since:

Only if one reads them and only, in the case of side-loaded apk files, if the permissions in the package metadata are correct. Most pirated apks, from what I've seen, conveniently leave out a lot of the more suspicious permissions or omit them entirely. That's usually when someone asks me to help with their phone and it's like tech supporting an older Windows pc. Neither Android nor iOS have real security as part of the os.

Thanks for just making stuff up. The actual fact though is that permissions in Android are enforced at the platform level, and it has been this way since day one of the design and implementation.

Your app must request a permission to be able to use it. When the app is installed or updated, all permissions it has requested are shown to the user. That set of permissions is maintained by the platform from that time on and can't change outside of another update of the app. Every time it tries to do an operation associated with a permission, this is checked by the platform against the list of permissions currently granted to it and failed if it doesn't hold the needed permission. Period.

Of course like every other piece of software there can be bugs that in this case result in security holes that allow applications to gain more privileged access. Any such situation on Android that allows an app to bypass permissions that haven't been granted by the user is always considered a high priority security bug and fixed as quickly as possible. That isn't the normal operation of the platform.

Reply Parent Score: 3