Archive >  2008 >  January >  1 Previous / Next

Scripting News, the weblog started in 1997 that bootstrapped the blogging revolution.

It's a security issue, folks Permanent link to this item in the archive.

A picture named tramp.jpgIn 1980, I signed a deal with a company to market a product I was developing. The contract required me to turn over the source code, which I did. One day I went to a meeting at the office of the company, and there on the product manager's desk, next to a door that opened to the outside, was a floppy labeled "Dave Winer's source code" in big letters.

If you own a Mac you may soon find out what that felt like.

It's amazing to me that the tech blogosphere doesn't treat Apple's policy re broken hard disks as the huge gaping security hole that it is.

Think about it. We worry about bad people getting their hands on little pieces of data that, when added together, give them the power to be us in banking and credit transactions.

Think about what you would do if your laptop was stolen.

Well, if you own a Mac and its hard disk goes bad, and you make the mistake of bringing it to Apple for service, you will turn over all that data to Apple. Not "may" or "might" but "will." What Apple in turn does with that data is none of your affair. They don't sign anything or offer any guarantees that they won't sell the disk to a data miner. Think it can't happen or that it's unlikely? I don't gain much comfort from your feeling of security.

I've been writing about this issue since December 22. Usually when I write something critical of Apple, the results are mixed. Some people are supportive, but far more people attack. This time the ratio is very different. Almost everyone who has commented gets that there's a huge problem here.

Some say that other vendors do this too. That gives me less comfort, not more. That means there's no escaping this crazy way of treating user's confidentiality. Ultimately it hurts the vendors because people can't use their computers for things the manufacturers say we can.

Further, it's got to be an issue for the banks, brokerage firms, credit agencies. If you are a newspaper and you employ reporters and they use a computer, how exactly are you guarding the confidentiality of your sources? If you're a confidential source, don't you have an interest when the reporter gives their computer manufacturer all their data to do with as they please?

Imagine what you would do if it turned out there was a bug in a Netgear or Linksys router that allowed, under special circumstances, a mailicous person to gain access to the full content of your hard disk at any time. Would you have a problem with that?

This is worse than Microsoft's neglect of malware that got me to stop using their computers. In that case it was Microsoft being neglegent. This time Apple itself is the source of the problem. It's as if they planted a virus in their operating system that entitled them, under special circumstances, completely out of your control, to gain access to everything on your disk, with as much time as they want, with no way for you to prevent or even detect the intrusion.

See also: My letter to Steve Jobs.

Re yesterday's post, Apple does not have a store in Shanghai. I assume the customer is sincere, he thought he was at an Apple-owned store. Here's a picture of the place he probably went to. BTW, I'm 100-percent sure that the store in Emeryville is owned by Apple. You can find it on Apple's store website.

Cole: "Apple sent me my new hard drive and instructions stating that I had to send the old one back within 10 days to avoid being charged $250."

Chuck Shotton says that Apple used to return failed drives with sensitive data for an additional cost.


Last update: Tuesday, January 01, 2008 at 5:54 PM Pacific.

I'm a California voter for Obama.
I'm a California voter for Obama.

A picture named dave.jpgDave Winer, 52, pioneered the development of weblogs, syndication (RSS), podcasting, outlining, and web content management software; former contributing editor at Wired Magazine, research fellow at Harvard Law School, entrepreneur, and investor in web media companies. A native New Yorker, he received a Master's in Computer Science from the University of Wisconsin, a Bachelor's in Mathematics from Tulane University and currently lives in Berkeley, California.

"The protoblogger." - NY Times.

"The father of modern-day content distribution." - PC World.

One of BusinessWeek's 25 Most Influential People on the Web.

"Helped popularize blogging, podcasting and RSS." - Time.

"The father of blogging and RSS." - BBC.

"RSS was born in 1997 out of the confluence of Dave Winer's 'Really Simple Syndication' technology, used to push out blog updates, and Netscape's 'Rich Site Summary', which allowed users to create custom Netscape home pages with regularly updated data flows." - Tim O'Reilly.

Dave Winer Mailto icon

My most recent trivia on Twitter.

On This Day In: 2007 2006 2005 2004 2003 2002 2001 2000 1999 1998.

January 2008
Dec   Feb

Lijit Search
Things to revisit:

1.Microsoft patent acid test.
2.What is a weblog?
3.Advertising R.I.P.
4.How to embrace & extend.
5.Bubble Burst 2.0.
6.This I Believe.
7.Most RSS readers are wrong.
8.Who is Phil Jones?
9.Send them away.
10.Negotiate with users.
11.Preserving ideas.
12.Empire of the Air.
13.NPR speech.
14.Russo & Hale.
15.Trouble at the Chronicle.
15.RSS 2.0.
16.Checkbox News.
17.Spreadsheet calls over the Internet.
18.Twitter as coral reef.
19.Mobs of the blogosphere.
20.Advice for Campaigns.
21.Social Cameras.
22.The Next Big Thing.
23.It's time to open up networking, again.
24.Am I competing?
25.Time to shake up conferences?
26.Bloggers working with journalists.

Teller: "To discover is not merely to encounter, but to comprehend and reveal, to apprehend something new and true and deliver it to the world."

Click here to see a list of recently updated OPML weblogs.

Click here to read blogs commenting on today's Scripting News.

Morning Coffee Notes, an occasional podcast by Scripting News Editor, Dave Winer.

KitchenCam 1.0

Click here to see an XML representation of the content of this weblog.

Click here to view the OPML version of Scripting News.

© Copyright 1997-2008 Dave Winer.

Previous / Next