On Feb 27, 2012, at 2:33 PM, William H. Magill wrote: > > "Just because the Operating System allows you to do something, such as > reading or modifying someone else's files, does not mean that you > have the right to go ahead and exploit that ability."
Clearly I do have the right, in terms of privileges, to exploit the ability. There is absolutely nothing, per the original poster's description, that's informing me that I don't. There isn't even a reliable "you ought not do this" mechanism with this. And if you're going to expect human, planetary wide consistency on ethics, well - that's very progressive and optimistic. I think that will inherently make for immense and very consistent disappointment in a security paradigm however. > > The easiest way for a server to enforce something like this is to simply deny > access to any Apple based access attempt. > Is that what you are advocating? I'd say if the serving platform lacks the granularity itself, on what data is sent to the client and leaves it strictly up to the client to parse that data stream to determine what to present to the user? Oh my f'n god, absolutely I'd issue a patch to deny access to any Apple-based access attempt first. Let those cards fall where they may. And in the meantime I'd wonder WTF I was thinking when I decided to defer to the client to parse potentially sensitive information, and how my software should stop doing this. I actually find it rather difficult to believe that this is not some server configuration problem. > > This is a bug which Apple needs to address and fix. Simply stating -- our way > is proprietary and therefore we can do whatever we want -- > is arrogance of an unbelievable degree, even for Apple. *shrug* This is not about defending Apple's ethics, or lack thereof, as far as I'm concerned. It's about the evaluation of data and it's protection. You really think putting your secret tax and legal documents in a folder labled "NOBODY HAS PERMISSION TO LOOK AT THIS!" is substitution for a safe? I definitely don't. We have a ripe history, starting well before 1963, proven every second of every day, that demonstrates the ethical consistency of human beings. Chris Murphy _______________________________________________ MacOSX-admin mailing list [email protected] http://www.omnigroup.com/mailman/listinfo/macosx-admin
