toggle

AAPL Stock: 433.26 ( 0 )

http://www.macnn.com/articles/11/01/06/could.lead.to.changes.from.apple/

Mac App Store receipt management already cracked [U]

updated 07:50 pm EST, Thu January 6, 2011

 

Could lead to changes from Apple


(Updated with further information and clarification) Mere hours after the opening of the Mac App Store, software crackers have already found a method that could lead to pirating of Mac App Store software. The method involves copying some package resources from a free app and implanting them into a copy of a paid app obtained from some other source (such as the developer's own web site) where the app does not do any receipt checking.

"Cracking" or creating an unlicensed copy of a restricted app is nothing new, but developers who didn't implement Apple's suggested method of ensuring that only authorized machines run purchased apps may suffer as unethical users help themselves to "free" versions of normally-paid applications that have no other license-checking schema. The specific technique is detailed in a post on Pastebin.com (specific post not linked), and Apple is aware of the breach.

MacNN strongly condemns software piracy as illegal and damaging to the entire Mac community.

Update: Developer Sean Christmann has explained the flaw and how to correct it in more detail. He calls it a "massive failure in the implementation of Apple's receipt system," but suggests the problem is limited in scope (falling mainly on apps that did not fully implement Apple's suggested receipt checking) and that other apps would prove less vulnerable to the technique.


by MacNN Staff

Post tools:

TAGS :

 software, developer, hacks, Apple

Related Articles

Recent Articles

toggle

Comments

  1. rodvera

    Fresh-Faced Recruit

    Joined: Oct 2007

    -30
    01/06, 08:38pm | report spam | Reply |

    I Love Apple But....

    HAHAHAHAHAHA

  1. Eccent

    Forum Regular

    Joined: Dec 1999

    +20
    01/06, 08:43pm | report spam | (1 reply) Reply |

    2 things

    Why can't you link to the specific post on pastebin?

    You're the only one of four sites I've read that say the DRM is cracked.

    From what I gathered, the others say it was up to the developers to implement whether they wanted receipt checking/matching. If the dev's didn't put it in, then the app had less or no DRM. So, I don't know that it's DRM that has been cracked so much as that the dev's didn't put it in their app.

  1. facebook_Sean

    Via Facebook

    Joined: Jan 2011

    +16
    01/06, 08:54pm | report spam | Reply |

    How devs can fix this

    I've just added a blog post on how devs can fix this for themselves.

    http://www.craftymind.com/2011/01/06/mac-app-store-hacked-how-developers-can-better-protect-themselves/

  1. aristotles

    Grizzled Veteran

    Joined: Jul 2004

    +3
    01/06, 09:57pm | report spam | Reply |

    Why even provide any details on how?

    Seriously, you guys were serious about not condoning piracy, why go into such detail?

  1. davedelong

    Fresh-Faced Recruit

    Joined: Apr 2010

    +9
    01/06, 10:17pm | report spam | Reply |

    This is totally inaccurate

    The DRM was not cracked. This is entirely the developer's fault: the program is not doing any receipt validation, and as such can be used with an invalid receipt. All that's required is that *a receipt* be in place.

  1. ScottG

    Fresh-Faced Recruit

    Joined: Jan 2005

    -2
    01/06, 10:24pm | report spam | Reply |

    Who Cares Really?

    Almost anyone can do this with a little reading and playing around with the package contents.

  1. Feathers

    Grizzled Veteran

    Joined: Oct 1999

    +5
    01/07, 07:36am | report spam | (1 reply) Reply |

    Content Creation

    This is getting so totally out of hand! Over Christmas I met a plumber who had bought a new Samsung TV with a USB socket for the specific purpose of playing all the movies he had pirated off the web. As someone who earns a living from content creation, I was infuriated. I'm starting to think that designers, film-makers, programmers and everyone else who creates content needs to start doing a little plumbing, painting and carpentry on the side for free and see how they like it.

Login Here

Not a member of the MacNN forums? Register now for free.

 
close
Photo
toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

MaxUpgrades MaxConnect for 2006-2008 Mac Pro

Nobody outside of Cupertino's privileged bunch knows the future of the Mac Pro line for sure. Despite Apple's reluctance to tell us wh ...

Brother HL-3170CDW LED Printer

We've mentioned before that we are far from a paperless society. For now, at least, there are tasks that require a piece of paper for ...

HTC One

It is hard to overstate just how critically important the HTC One is to the Taiwanese company’s fortunes. Despite its alarming decline ...

toggle

Most Commented

 

Popular News