←back to thread

macOS unable to open any non-Apple application

(twitter.com)
2603 points mattsolle | 3 comments | 12 Nov 20 21:00 UTC | HN request time: 0.798s | source
Show context
Lammy ◴[12 Nov 20 21:38 UTC] No.25075443[source]
Maybe it's just me but the idea that my computer lets Apple (+ any LE organizations) surveil my app launches seems so much scarier than any malware.
replies(6): >>25075490 #>>25075500 #>>25075562 #>>25075747 #>>25075841 #>>25076444 #
brundolf ◴[12 Nov 20 21:44 UTC] No.25075490[source]
I don't know about you, but hashes of the binaries I run don't exactly reveal any sensitive personal information about me. That said, obviously they should have much more graceful degradation in place for when something is wrong with the service.
replies(8): >>25075523 #>>25075525 #>>25075542 #>>25075578 #>>25076133 #>>25076290 #>>25076425 #>>25076603 #
djsumdog ◴[12 Nov 20 21:46 UTC] No.25075523[source]
In this case, isn't the hash of the binary consistent across all devices, so Apples can in fact derive exactly which binary you're running (assuming they have a large database of application binary and hashes)?
replies(3): >>25075572 #>>25075582 #>>25075672 #
brundolf ◴[12 Nov 20 21:59 UTC] No.25075672[source]
Yes. My personal data involves what I do within those apps, not which ones they are.
replies(3): >>25075725 #>>25075758 #>>25075894 #
thelean12 ◴[12 Nov 20 22:03 UTC] No.25075725[source]
That's not even close to true. Apps that you have downloaded can reveal a massive amount of potentially personal information.

Think about someone having a dating app that would out them. Or a therapy app that they don't want people to know about. And that just scratches the surface.

replies(2): >>25075858 #>>25075965 #
valuearb ◴[12 Nov 20 22:13 UTC] No.25075858[source]
Only if linked to personally identifiable information. Do we have any evidence this is happening?
replies(4): >>25075991 #>>25075995 #>>25076004 #>>25077372 #
gpm ◴[12 Nov 20 22:23 UTC] No.25076004[source]
You are moving the goal posts.

It is also trivially linked to ip address, which is usually personally identifying.

replies(1): >>25076166 #
1. valuearb ◴[12 Nov 20 22:37 UTC] No.25076166[source]
Do you have any proof this is happening?

This is Apple we are talking about, which has the strongest privacy commitment of any device maker, and no advertising business outside of the App Store. Linking IP addresses to app certificate requests provides them zero benefit and exposes them to substantial brand damage.

replies(1): >>25076307 #
2. gpm ◴[12 Nov 20 22:49 UTC] No.25076307[source]
Do I have proof they have your ip address? Of course, that's how the internet works.

Do I have proof that they could be ordered by a court to store it? Of course, that's how warrants work.

Do I have proof they are currently storing it? No, nor was that ever the claim.

replies(1): >>25117700 #
3. valuearb ◴[16 Nov 20 22:11 UTC] No.25117700[source]
Then the claim is ridiculous. Apple isn’t keeping any of this info, because it would have no purpose.