Exadra37

Exadra37

Your Mac Isn't Yours - worse, it spies on you and sends it home unencrypted

On modern versions of macOS, you simply can’t power on your computer, launch a text editor or eBook reader, and write or read, without a log of your activity being transmitted and stored.

This means that Apple knows when you’re at home. When you’re at work. What apps you open there, and how often. They know when you open Premiere over at a friend’s house on their Wi-Fi, and they know when you open Tor Browser in a hotel on a trip to another city.

Well, it’s not just Apple. This information doesn’t stay with them:

  1. These OCSP requests are transmitted unencrypted. Everyone who can see the network can see these, including your ISP and anyone who has tapped their cables.
  2. These requests go to a third-party CDN run by another company, Akamai.
  3. Since October of 2012, Apple is a partner in the US military intelligence community’s PRISM spying program, which grants the US federal police and military unfettered access to this data without a warrant, any time they ask for it. In the first half of 2019 they did this over 18,000 times, and another 17,500+ times in the second half of 2019.

Your computer now serves a remote master, who has decided that they are entitled to spy on you. If you’ve the most efficient high-res laptop in the world, you can’t turn this off.

Most Liked

CommunityNews

CommunityNews

TL;DR

  • No, macOS does not send Apple a hash of your apps each time you run them.
  • You should be aware that macOS might transmit some opaque information about the developer certificate of the apps you run. This information is sent out in clear text on your network.
  • You shouldn’t probably block ocsp.apple.com with Little Snitch or in your hosts file.

https://blog.jacopo.io/en/post/apple-ocsp/

This thread was posted by one of our members via one of our automated news source trackers.

Carter

Carter

So Apple’s “secure enclave” and “the most secure personal computer in the world” and all the other marketing BS doesn’t mean :poop: then!!

AstonJ

AstonJ

I always have a little doubt Paulo :sweat_smile:

For now I have blocked trustd in LittleSnitch :nerd_face: are there any other steps people are recommending?

Where Next?

Popular Macos topics Top

First poster: bot
Hackers jailbreak Apple’s T2 security chip powered by bridgeOS - Report Cyber Crime. The Apple T2 security chip has finally been jailbro...
New
AstonJ
Just over an hour to go… anyone going to be watching it? New Macs? :nerd_face:
New
Exadra37
On modern versions of macOS, you simply can’t power on your computer, launch a text editor or eBook reader, and write or read, without a ...
New
New
First poster: AstonJ
https://twitter.com/patrickwardle/status/1349488392732491776 This thread was posted by one of our members via one of our news source t...
New
AstonJ
Just noticed this after the latest macOS update (11.3.1) - you can now set a low res (non-retina/HiDPR) mode: Handy if you need a 1:1...
New
AstonJ
Just writing this up in case it helps anyone else because it wasn’t automatic. First, connect you iPad to your Mac via a cable. On your...
New
AstonJ
Intel clearly not happy that Apple are now creating their own silicon :081:
New
AstonJ
I almost did last night, but then had a change of heart - might just see what others think or wait for the initial set of bug-fixes first...
New
AstonJ
If you want a quick and easy way to block any website on your Mac using Little Snitch simply… File > New Rule: And select Deny, O...
New

Other popular topics Top

PragmaticBookshelf
Stop developing web apps with yesterday’s tools. Today, developers are increasingly adopting Clojure as a web-development platform. See f...
New
AstonJ
Or looking forward to? :nerd_face:
503 15149 280
New
Exadra37
I am thinking in building or buy a desktop computer for programing, both professionally and on my free time, and my choice of OS is Linux...
New
Exadra37
Please tell us what is your preferred monitor setup for programming(not gaming) and why you have chosen it. Does your monitor have eye p...
New
AstonJ
Curious to know which languages and frameworks you’re all thinking about learning next :upside_down_face: Perhaps if there’s enough peop...
New
AstonJ
Was just curious to see if any were around, found this one: I got 51/100: Not sure if it was meant to buy I am sure at times the b...
New
New
AstonJ
If you’re getting errors like this: psql: error: connection to server on socket “/tmp/.s.PGSQL.5432” failed: No such file or directory ...
New
AnfaengerAlex
Hello, I’m a beginner in Android development and I’m facing an issue with my project setup. In my build.gradle.kts file, I have the foll...
New
PragmaticBookshelf
A concise guide to MySQL 9 database administration, covering fundamental concepts, techniques, and best practices. Neil Smyth MySQL...
New