Comment by misnome
1 year ago
We’ve decades of examples of simple toggles not working. Bad actors will just explain to the target the necessity of switching it on.
1 year ago
We’ve decades of examples of simple toggles not working. Bad actors will just explain to the target the necessity of switching it on.
By that logic the bad actor will just explain that he needs you to log into your online bank account so could you please do that and wire some money. Such scams certainly exist but it isn't a relevant attack vector for the sort of end user security that we're talking about here.
You can load your own root CA on iOS devices (i did it to enable certificates issued by my own private CA). That bypasses a LOT of security issues, and yet it’s still feasible.
Put it in the bootloader then.
The pretence that Apple makes these things for security reasons and there's absolutely no way in the world to make it possible is a bit ridiculous.
Apple shipped hypervisor support back in iOS 16, then removed it!
https://taoofmac.com/space/blog/2024/07/25/0900
This is a nice post of things that bothers me in the Apple ecosystem: arbitrary limitation after arbitrary limitation.
I didn't know about the Apple Watch couldn't pair with an iPad, and I don't think even an Apple fanboy could make an excuse for that one.
1 reply →
But we have another example to look at. Why isn't this a big problem on Apple laptops?
Laptops have always been able to virtualise, the same they can download stuff off the internet without going through the App Store. Changing that wouldn’t fly.