Amaya Toman U-Linuz Henze, umcwaningi wezokuphepha, wabelane ngeyakhe Twitter ividiyo ekhombisa iphutha lokuvikeleka ohlelweni lokusebenza lwe-macOS. Isiphazamisi esishiwo senza kube nokwenzeka ukufinyelela kumaphasiwedi agcinwe ku-Keychain, ikakhulukazi ezintweni ezisezigaba Ngena ngemvume kanye nesistimu.
UHenze uphinde waphawula ngohlelo lwe-bug bounty oluqhutshwa yi-Apple. Ngamazwi akhe, ukhungathekile ukuthi uhlelo lusebenza ngokukhethekile ohlelweni lokusebenza lwe-iOS futhi alugxili ku-macOS. Ephikisana nokuphathwa kwe-Apple kwezimbungulu ezinhlelweni zayo kanye nokubika kwazo, u-Henze wanquma ukungazisi ngokusemthethweni inkampani ngalokho akutholile.
U-Henze usevele wakwazi ukwembula isiphazamisi esingaphezu kwesisodwa ohlelweni lokusebenza lwe-iOS esikhathini esidlule, ngakho amazwi akhe angabhekwa njengokwethenjelwa futhi ayiqiniso. Akudingekile ukuthola amalungelo okuphatha ukuze wenze lokhu kuhlasela, futhi ukufinyelela kumagama-mfihlo ku-Keychain ku-Mac kungatholwa ngisho nakumakhompyutha anokuvikelwa kobuqotho besistimu okucushiwe. Noma kunjalo, i-keychain ye-iCloud ayithinteki ngephutha ngoba igcina amaphasiwedi ngendlela ehlukile. Ngokweqile kuyenzeka ukuvikela iphutha ngokuvikela i-keychain ngokwayo nge-password eyodwa ngaphezulu, kodwa lokhu akuyona inketho engatholakala ngokuzenzakalelayo, yonke le nqubo iyinkimbinkimbi futhi ngenxa yalokho iholela ezingxoxweni eziningi zokuqinisekisa phakathi nomsebenzi. iMac.
Umthombo: 9 ku5Mac
I-Apple isesinqeni. Phila isikhathi eside i-emoji entsha. Ngolunye usuku umfana oneminyaka engu-14 ubudala uthola iphutha elibi ku-FaceTime. Manje iqonde ku-Keychain. Cishe kubukeka sengathi yakha amagama ayimfihlo, ibuka uhlelo lwe-hash iyifaka ngekhodi, iyashesha, futhi ithola umphumela.
Kuthiwani ngokuvikeleka, ikakhulukazi njengoba sine-emoji elungile ngokwezepolitiki kanye nefulegi lothingo eliphrintiwe kuwebhusayithi ye-Apple ngosuku olufanele. Yilokho okubalulekile manje!