toggle

AAPL Stock: 99.76 ( + 2.09 )

Printed from http://www.macnn.com

Apple closes iTunes security hole, disables PyMusique

updated 06:15 pm EST, Mon March 21, 2005

Apple disables PyMusique

Apple has access to the iTunes Music Store as well as purchase song stripped of any copy-protection. Released last week, PyMusique provided an alternative interface to the iTunes Music Store: it allowed users to register at the store, purchase music, and download songs (multiple times) without the playback restrictions associated with Apple's FairPlay DRM. Apple said it closed the security hole that opened a "backdoor" into the iTunes system, allowing PyMusique access to the software, according to ZDNet. Some iTunes customers--as many as 15 percent of users--would need to upgrade their software. "The security hole in the iTunes Music Store which was recently exploited has been closed, and as a consequence the iTunes Music Store will now sell music only to customers using iTunes version 4.7."




by MacNN Staff

POST TOOLS:

TAGS :

toggle

Comments

  1. history1me

    Joined:

    0

    Hu!

    Who didn't see that coming?

  1. dole

    Joined: Dec 1969

    0

    it will get hacked again

    It will get hacked again in a couple weeks and the cycle of it getting hacked, then apple fixing it will continue.

  1. Eriamjh

    Joined: Dec 1969

    0

    That was fast....

    I'm sure the music a-holes weren't too happy.

  1. IonCable

    Joined: Dec 1969

    0

    Only Problem...

    The sad thing is that the hack only boldens the RIAA position on on-line sales, ect. Their response will be to try and tighten it up even more. I know there are those that want/will hack DRM. But I wish they would leave the ones that are reseaonable alone. iTunes isn't the greatest DRM but it's the best of the alternatives. A business is never going to say, "gee they don't like the DRM let's just give the stuff away"

  1. resuna

    Joined: Dec 1969

    0

    Depends on the fix...

    If Apple fixed it by doing the encoding on the server instead of in iTunes, then they can't break it again because there's no longer any encryption step to bypass.

    They can still decrypt it themselves, by winkling the key out of iTunes or the iTMS, but this particular hole *can* be closed.

  1. LouZer

    Joined: Dec 1969

    0

    Re: Depends

    If Apple fixed it by doing the encoding on the server instead of in iTunes, then they can't break it again because there's no longer any encryption step to bypass.

    Not necessarily. If they had updated iTunes 4.7 to communicate securely with the iTunes server (making sure some key is passed/encoded correctly) before sending the file, to make sure the client is a valid client.

  1. Jonathan-Tanya

    Joined: Dec 1969

    0

    oh well

    darn it, I guess now if you want DRM free music, you'll have to go to one of the other thousand places that offer that.

    don't get me wrong, in this case, I think apple is very much in the right to close down this security hole...hey look, their engineers fixed something....I'm kind of shocked, why didn't they leave the security hole in place, and just put kids in jail until people were too afraid to use it.

    whats the fun in just fixing the leak..I mean hole.

  1. Wutzo

    Joined: Dec 1969

    0

    thank you hackers

    obviously the hole was fixed by apple before the hackers exploited it - iTunes 4.7 was released long before the exploit.

    all that apple did was to switch it on and make iTunes < 4.7 incompatible. also apple removed to "load again" feature.

    so after all all the hack did for us was that we have to update iTunes

  1. denim

    Joined: Dec 1969

    0

    Apple to crackers

    "NEXT!"

  1. bgmccollum

    Joined: Dec 1969

    0

    Ethereal

    Just use Ethereal to sniff out the traffic while you download from iTunes. Piece the file back together, and you will have one that has DRM (in iTunes), and one that is DRM Free...

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

Plantronics Rig Surround 7.1 headset

Trying to capture the true soundscape of video games can be a daunting task. Looking to surround-sound home theater options, users hav ...

Kenu Airframe +

Simple, stylish and effective, the Kenu Aiframe + portable car mount is the latest addition to Kenu's lineup. Released earlier this y ...

Adesso Compagno X Bluetooth keyboard

The shift from typing on physical keyboards to digital versions on smartphones and tablets hasn't been an easy for many consumers. Fr ...

toggle

Most Commented