All Posts by Date or last 15, 30, 90 or 180 days.
also by Lloyd: diglloyd.com photography and WindInMyFace.com
Thank you for purchasing through links and ads on this site.
OWC / MacSales.com...
diglloyd Deal Finder...
Buy other stuff at Amazon.com...
Capacities up to 48TB and speeds up to 1527MB/s

Troubling Precedent: Apple Pushes Security Update Without User Permission (NTP Security Flaw)

A disturbing precedent was set today in which Apple auto-installed (without notice or permission) OS X NTP Security Update.

Yes, I wanted the update and kudos to Apple for patching this bug quickly, but my computer is my property, and never mind whatever legal excrement Apple mixes into the OS X license, I do not grant Apple the right to invade my computer, no matter what the goal. The ends do not justify the means.

Apple pushes update without permission

The update is not even listed in the Updates section of the App Store app on my Mac. Which in itself was a source of concern. How would one know it is legitimate unless by reading the news?

Update: see App Store preferences at end.

Bars always get pushed lower, not higher; lines once crossed are more easily crossed the next time. There is absolutely no reason that Apple could not respect users enough to post a warning, asking for permission to install the fix. But this is coming from the same company that forced unwanted U2 albums into users accounts. And so, MPG increasingly distrusts the judgment and ethics now at the helm of Apple.

Consider also that any update mechanism capable of pushing updates without user permission is in itself a massively juicy prize that any hacker worth his/her salt would love to snag. Moreover, all software code has bugs. These reasons alone are enough to warrant the removal of the capability entirely.

MPG calls upon Apple to defeat the ability in OS X to make any auto-push update of any kind—remove the code so as to remove the risk.

Finally, consider a secret court order that instructs Apple to push an “update” that has, say, a bit more than one wishes for? Pick your country, USA or otherwise. All such prospects are chilling.

App Store preferences

Several readers wrote to educate me on the App Store preferences. They should be in the App Store app, right? Wrong. They are in System Preferences.

Such a step backwards—I could understand Software Update... just fine. But I don’t think of the App Store app as system software. Had me fooled for sure. And why can’t one preferences for App Store in the App Store app? Disjointed design.

In the past, I’ve unchecked every box except the download one, but I have noticed Apple resetting various preferences with system updates. So it seems that the auto push was enabled, probably at the 10.10.1 update. I certainly have never enabled the setting.

So I’ve now unchecked the Install system data files and security updates choice.

Apple pushes update without permission

MacPerformanceGuide.com
B&H Deal ZoneDeals by Brand/Category/Savings
Deals expire in 9 hours unless noted. Certain deals may last longer.
$3097 SAVE $200 = 6.0% Nikon D850 DSLR in Cameras: DSLR
$1797 SAVE $200 = 10.0% Pentax K-1 Mark II DSLR in Cameras: DSLR
$998 SAVE $400 = 28.0% Sony a7 II Mirrorless in Cameras: Mirrorless
$1798 SAVE $200 = 10.0% Sony a7R II Mirrorless in Cameras: Mirrorless
$2798 SAVE $400 = 12.0% Sony a7R III Mirrorless in Cameras: Mirrorless
$3998 SAVE $500 = 11.0% Sony a9 Mirrorless in Cameras: Mirrorless

diglloyd.com | Terms of Use | PRIVACY POLICY
Contact | About Lloyd Chambers | Consulting | Photo Tours
Mailing Lists | RSS Feeds | Twitter
Copyright © 2019 diglloyd Inc, all rights reserved.
Display info: __RETINA_INFO_STATUS__