Focus on Apple
Re: Bill Gates on Mac OS X security Feb 04 2007 01:16PM
David Maynor (dmaynor gmail com)
I would doubt that considering the presentation was getting press a month
before it was given and nobody knew the demo was to be done on a Mac. We
were most often told by observers they were sure that the demo would be done
against an intel or boradcom chipset on a PC. Most people I meet know barely
remember it was a Mac only that wifi drivers are very buggy.

But hey, you are entitled to your opinion.

On 2/4/07, Massimo FWA266M Marino <MaxSeaman (at) fwa (dot) com [email concealed]> wrote:
>
> On 3 Feb 2007, at 17:56, David Maynor wrote:
>
> How could it have been handled differently by Apple? I have reported
> alot of vulnerabilities to alot of vendors and never once have I had
> the PR department respond to something. Take the Dell and Toshiba
> Bluetooth stack issuse. We reported it to security, we worked with the
> engineers to fix it (and strangely information we gave to the
> engineers didn't end up on blogs), and only after everything was fixed
> (the process took about a month and a half) did we talk to their PR
> group to coordinate a joint release.
>
>
> Good exchange David and Dave but there is a false note.
>
> I honestly believe that Apple hand was forced quite heavily in this story.
> I do not think a second that if the issue was as above: reported to Apple
> security, worked with the engineers to fix (whatever needed *actually* to be
> fixed rather than reported) the information would have not ended up on blogs
> either.
>
> If Dell and Toshiba were to discover by Krebbs and every pundit around
> reporting that if a Dell or a Toshiba were to be using some third party
> peripheral for features they do provide inherently already and pointed at as
> "there, they are the ones at fault, see how easy it is", practically the
> message trumpeted all over the net, you may be 100% sure that their
> respective PR would step in no different if no worst than what Apple PR did.
>
> I do not think anyone can be so naive deeply. Just start from the
> statement above "Dell & Toshiba, we reported to security". Indeed, like with
> Apple?
>
> Apple cannot fart that it goes on prime time. Dell can collapse and only
> its users will notice, for a week before buying a new computer and life as
> usual. And someone is seriously surprised Apple PR got into the scene
> considering how the all story erupted? C'mon. If Apple was treated as Dell
> and Toshiba you would not have had Krebbs and all others jumping into the
> occasion to make a big splash news. Change Apple in that story with Toshiba
> and a big YAWNN would have been the result. And I think everyone involved
> are pretty aware of this, right?
>
> Cheers
>
>
>
> Massimo Marino
> North America Region Manager
> FreeWorld Airways - www.freeworld-airways.net
>
>
>
>
I would doubt that considering the presentation was getting press a month before it was given and nobody knew the demo was to be done on a Mac. We were most often told by observers they were sure that the demo would be done against an intel or boradcom chipset on a PC. Most people I meet know barely remember it was a Mac only that wifi drivers are very buggy.
<br><br>But hey, you are entitled to your opinion. <br><br><div><span class="gmail_quote">On 2/4/07, <b class="gmail_sendername">Massimo FWA266M Marino</b> <<a href="mailto:MaxSeaman (at) fwa (dot) com [email concealed]">MaxSeaman (at) fwa (dot) com [email concealed]</a>> wrote:
</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><div style=""><span class="q"><div><div>On 3 Feb 2007, at 17:56, David Maynor wrote:</div>
<br><blockquote type="cite"><div style="margin: 0px;"><font style="font-family: Comic Sans MS; font-style: normal; font-variant: normal; font-weight: normal; font-size: 12px; line-height: normal; font-size-adjust: none; font-stretch: normal;" face="Comic Sans MS" size="3">
How could it have been handled differently by Apple? I have reported</font></div><div style="margin: 0px;"><font style="font-family: Comic Sans MS; font-style: normal; font-variant: normal; font-weight: normal; font-size: 12px; line-height: normal; font-size-adjust: none; font-stretch: normal;" face="Comic Sans MS" size="3">
alot of vulnerabilities to alot of vendors and never once have I had</font></div><div style="margin: 0px;"><font style="font-family: Comic Sans MS; font-style: normal; font-variant: normal; font-weight: normal; font-size: 12px; line-height: normal; font-size-adjust: none; font-stretch: normal;" face="Comic Sans MS" size="3">
the PR department respond to something. Take the Dell and Toshiba</font></div><div style="margin: 0px;"><font style="font-family: Comic Sans MS; font-style: normal; font-variant: normal; font-weight: normal; font-size: 12px; line-height: normal; font-size-adjust: none; font-stretch: normal;" face="Comic Sans MS" size="3">
Bluetooth stack issuse. We reported it to security, we worked with the</font></div><div style="margin: 0px;"><font style="font-family: Comic Sans MS; font-style: normal; font-variant: normal; font-weight: normal; font-size: 12px; line-height: normal; font-size-adjust: none; font-stretch: normal;" face="Comic Sans MS" size="3">
engineers to fix it (and strangely information we gave to the</font></div><div style="margin: 0px;"><font style="font-family: Comic Sans MS; font-style: normal; font-variant: normal; font-weight: normal; font-size: 12px; line-height: normal; font-size-adjust: none; font-stretch: normal;" face="Comic Sans MS" size="3">
engineers didn't end up on blogs), and only after everything was fixed</font></div><div style="margin: 0px;"><font style="font-family: Comic Sans MS; font-style: normal; font-variant: normal; font-weight: normal; font-size: 12px; line-height: normal; font-size-adjust: none; font-stretch: normal;" face="Comic Sans MS" size="3">
(the process took about a month and a half) did we talk to their PR</font></div><div style="margin: 0px;"><font style="font-family: Comic Sans MS; font-style: normal; font-variant: normal; font-weight: normal; font-size: 12px; line-height: normal; font-size-adjust: none; font-stretch: normal;" face="Comic Sans MS" size="3">
group to coordinate a joint release.</font></div> </blockquote></div><br></span><div>Good exchange David and Dave but there is a false note.</div><div><br></div><div>I honestly believe that Apple hand was forced quite heavily in this story. I do not think a second that if the issue was as above: reported to Apple security, worked with the engineers to fix (whatever needed *actually* to be fixed rather than reported) the information would have not ended up on blogs either.
</div><div><br></div><div>If Dell and Toshiba were to discover by Krebbs and every pundit around reporting that if a Dell or a Toshiba were to be using some third party peripheral for features they do provide inherently already and pointed at as "there, they are the ones at fault, see how easy it is", practically the message trumpeted all over the net, you may be 100% sure that their respective PR would step in no different if no worst than what Apple PR did.
</div><div><br></div><div>I do not think anyone can be so naive deeply. Just start from the statement above "Dell & Toshiba, we reported to security". Indeed, like with Apple? </div><div><br></div><div>Apple cannot fart that it goes on prime time. Dell can collapse and only its users will notice, for a week before buying a new computer and life as usual. And someone is seriously surprised Apple PR got into the scene considering how the all story erupted? C'mon. If Apple was treated as Dell and Toshiba you would not have had Krebbs and all others jumping into the occasion to make a big splash news. Change Apple in that story with Toshiba and a big YAWNN would have been the result. And I think everyone involved are pretty aware of this, right?
</div><div><br></div><div>Cheers</div><br><br><div> <span><img></span><span style="border-collapse: separate; border-spacing: 0px; color: rgb(0, 0, 0); font-family: Comic Sans MS; font-size: 12px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<span style="border-collapse: separate; border-spacing: 0px; color: rgb(0, 0, 0); font-family: Comic Sans MS; font-size: 12px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px;">
<div><br>Massimo Marino</div><div>North America Region Manager</div><div>FreeWorld Airways - <a href="http://www.freeworld-airways.net" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">www.freeworld-airways.net
</a></div></span><br></span> </div><br></div>
<br clear="all"></blockquote></div><br>

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus