Open Menu
AllLocalCommunitiesAbout
lotide
AllLocalCommunitiesAbout
Login

Your Computer Isn't Yours: Apple stores every program you run, and when and where you ran it

⁨196⁩ ⁨likes⁩

Submitted ⁨⁨7⁩ ⁨months⁩ ago⁩ by ⁨mozz@mbin.grits.dev⁩ to ⁨technology@beehaw.org⁩

https://sneak.berlin/20201112/your-computer-isnt-yours/

source

Comments

Sort:hotnewtop
  • ptz@dubvee.org ⁨7⁩ ⁨months⁩ ago

    Don’t want to sound like I’m proselytizing, but unless you run Linux, your computer really isn’t yours (closed firmware aside).

    Microsoft is just as bad at treating your hardware as theirs that they so graciously allow you to use.

    source
    • pearsaltchocolatebar@discuss.online ⁨7⁩ ⁨months⁩ ago

      Forced updates are a good thing for most people, though. The general population doesn’t know or care about infosec, so they’ll put off updates for months or years.

      source
      • Nia_The_Cat@beehaw.org ⁨7⁩ ⁨months⁩ ago
        [deleted]
        source
        • -> View More Comments
      • UmbraTemporis@lemmy.dbzer0.com ⁨7⁩ ⁨months⁩ ago

        No.

        A notification, in the tray and elsewhere across the OS, with a short description like “Updates are crucial to the security of you and your device, they also provide the freshest experience.” would get the point across. What would be even better is if there was a one-click NQA button to initiate the update, perhaps even included on the notification.

        source
        • -> View More Comments
      • kent_eh@lemmy.ca ⁨7⁩ ⁨months⁩ ago

        Updates forced at inconvenient (or inapropriate) times aren’t a good thing though.

        Don’t interrupt my work right bloody now.

        You can update later when I’m done doing what I’m in the middle of.

        source
        • -> View More Comments
      • derbis@beehaw.org ⁨7⁩ ⁨months⁩ ago

        Let’s have the authorities force us to eat salad and exercise while we’re at it, it’s better for us

        source
        • -> View More Comments
      • ptz@dubvee.org ⁨7⁩ ⁨months⁩ ago

        Hard agree to disagree.

        source
        • -> View More Comments
      • Zworf@beehaw.org ⁨7⁩ ⁨months⁩ ago

        That’s their problem though. If they wanna get hacked, go for it.

        But there should be a way to turn it off for us power users at least (without having to build a whole domain controller)

        source
        • -> View More Comments
    • thingsiplay@beehaw.org ⁨7⁩ ⁨months⁩ ago

      Don’t want to sound like I’m proselytizing, but there are other free operating systems not based on Linux: FreeBSD, FreeDOS or ReactOS in example. I wish, I could add GNU/Hurd to the list, but from what I know, its unusable at the moment. Redox is also a new OS written in Rust, but it’s not ready yet (I think).

      Now, are these real alternatives to a regular Linux based OS? In some cases they are (FreeBSD and their family), but most probably would just use Linux for their PC. They aren’t even suited for gaming I guess, the likes of Steam. I was just “Acktually”-ing around that you don’t “need” Linux for owning your computer. I mean, you mentioned closed firmware, so technically I was allowed to. :D

      source
      • PM_ME_VINTAGE_30S@lemmy.sdf.org ⁨7⁩ ⁨months⁩ ago

        Yeah my position is really to recommend any FOSS OS in the large over proprietary ones. However, since my experience is primarily with Linux distributions, and I do think that Linux makes sense for a lot of use cases, I usually start by talking about “Linux” first.

        But, from my experience, if a “solution” to a problem “forces” the user to make a choice, then they’ll stick with what “currently works” over having to make a choice. So when I talk to people about Linux IRL, I typically direct them to Linux Mint directly, even though other distros exist and it actually doesn’t fit my use cases. Once they’re comfortable in the Linux ecosystem, they can switch to a different distro or OS family if they feel the need to do so.

        source
        • -> View More Comments
      • ptz@dubvee.org ⁨7⁩ ⁨months⁩ ago

        Yeah, I know people running FreeBSD as their daily driver; totally left that one out haha.

        The rest of them are either niche (e.g. FreeDOS for retrogaming) or not quite ready for daily driving (e.g. ReactOS – which I’ve been rooting for for a while now).

        There’s also TempleOS lol

        source
        • -> View More Comments
      • nightwatch_admin@feddit.nl ⁨7⁩ ⁨months⁩ ago

        The Hurd hasn’t done anything properly in, what, 3 decades? I am actually surprised someone even remembers it.

        source
      • acastcandream@beehaw.org ⁨7⁩ ⁨months⁩ ago

        Would you recommend one of these alternatives or a Linux-based OS for a 2016 Intel MacBook Pro?

        source
        • -> View More Comments
    • Diplomjodler@feddit.de ⁨7⁩ ⁨months⁩ ago

      Don’t want to sound like I’m proselytising but do you have a few minutes to talk about our Lord and Saviour, Linus Torvalds?

      source
  • Adderbox76@lemmy.ca ⁨7⁩ ⁨months⁩ ago

    I’ve said for years that the very last power we have as consumers is the ability to turn off our internet and still be able to use our devices. That is my minimum expectation of any company.

    Fridge needs an internet connection, fuck you. TV won’t work unless it’s connected to the internet, fuck you.

    But most especially (and this is why I moved to Linux originally), computer needs to always be connected to the internet even if all I’m doing is opening an office program that has nothing to do online? Go fuck yourself.

    The ability to unplug my ethernet cable and still be able to use 99% of my computer with the exception of email and a web browser is the absolutely most basic human right left to us.

    source
    • michael_palmer@lemmy.sdf.org ⁨7⁩ ⁨months⁩ ago

      New versions of Android have made turning off mobile data more inconvenient. Now, you need to tap twice instead of just once in previous versions.

      source
      • SuperSpruce@lemmy.zip ⁨7⁩ ⁨months⁩ ago

        My fix to this is to click the “airplane mode” button

        source
      • limerod@reddthat.com ⁨7⁩ ⁨months⁩ ago

        That’s Google’s version of android. Most OEMs still have the single tap internet toggle.

        source
  • wesker@lemmy.sdf.org ⁨7⁩ ⁨months⁩ ago

    My computer runs Linux.

    source
  • tal@lemmy.today ⁨7⁩ ⁨months⁩ ago

    Your Computer Isn’t Yours: Apple styled every program you run, and when and where you ran it

    I’m not using Apple hardware or software, so I doubt it.

    source
    • PoliticallyIncorrect@lemm.ee ⁨7⁩ ⁨months⁩ ago

      Same

      source
  • Eggyhead@kbin.run ⁨7⁩ ⁨months⁩ ago

    The version of macOS that was released today, 11.0, also known as Big Sur…

    Good thing we’re on top of things here on the fediverse.

    source
  • HeartyBeast@kbin.social ⁨7⁩ ⁨months⁩ ago

    This is from 2020. You absolutely can use Little Snitch or a similar firewall to block this traffic.

    https://eclecticlight.co/2021/02/23/how-to-run-apps-in-private/

    source
    • octopus_ink@lemmy.ml ⁨7⁩ ⁨months⁩ ago

      This is from 2020. You absolutely can use Little Snitch or a similar firewall to block this traffic.

      We agree how sinister and dystopian it is to need to work against your hardware/os vendor for something like this though, right?

      source
      • sadreality@kbin.social ⁨7⁩ ⁨months⁩ ago

        Spending time to this is waste of life, it used be you setup the PC and it was good, now it is maintenance. I could not justify it any longer... made that switch.

        source
    • adespoton@lemmy.ca ⁨7⁩ ⁨months⁩ ago

      Can you though? LS now operates in user mode, which means it can no longer block traffic sent to Apple via a kernel thread.

      It’s all a bit pointless though, as a LOT of hardware now calls home as well, and it doesn’t matter what OS to run on top of it unless you’re running something like TempleOS. Vanilla Linux is not going to protect you by itself.

      But that article points at a solution for macOS users: it’s the certificates that are being checked. Any non-bog-standard software I run is not notarized or signed, and it functions just fine and has nothing to send back to Apple’s servers. First time I run it I need to right click and select Open to run the app, and this bypasses the entire signer system.

      source
    • mozz@mbin.grits.dev ⁨7⁩ ⁨months⁩ ago

      Added in an edit

      source
    • Zworf@beehaw.org ⁨7⁩ ⁨months⁩ ago

      Little Snitch

      Little Snitch won’t work because they use the Apple-blessed content filter which apparently doesn’t allow blocking this.

      Pointing it to localhost in the hosts file does work, as indicated in that article.

      source
  • pudcollar@lemmy.ml ⁨7⁩ ⁨months⁩ ago

    4 year old article

    source
    • Thann@lemmy.ml ⁨7⁩ ⁨months⁩ ago

      Last time I bought this up, everyone thought I was lying because they couldn’t believe the thought of their beloved status symbol not being perfect.

      Its important to remind people that apple cares about your security and privacy as much as zuckerberg.

      source
  • fwygon@beehaw.org ⁨7⁩ ⁨months⁩ ago

    Why is this four year old story being reposted?

    source
    • mozz@mbin.grits.dev ⁨7⁩ ⁨months⁩ ago

      It was news to me

      source
  • YeeHawSeeSaw@lemm.ee ⁨7⁩ ⁨months⁩ ago

    I haven’t noticed Akamai traffic recently; has Apple moved to another contractor, or do they import these hashes internally now?

    source