OSOpinion.com discusses the security issues relating to the newly revised iDisk component included with Mac OS X 10.1. The new iDisk uses the WebDAV protocol to transmit password data, and author Kelly McNeill claims that Apple's implementation violates the standard's specificiations, making it easier for hackers to gain password access.
Comments
If you use any email application to fetch your email, you should know that your password is sent in clear text anyway. So why should your iDisk be suddenly be required to have industrial strength security, but not your email ??? Remember, it is the same password !!!
All forms of authentication to iTools should be secure - WebDAV, SMTP AUTH, APOP, IMAP. None is an excuse for any other. Also, you forget that many people probably only make use of one of the services (I use iDisk occasionally, but don't yet use my mac.com email account).
Anyway, if you authenticate and connect through AFP (AppleShare), it's as secure as it was before.
maybe it's the wrong way 'round, and every passwords should be handled more securely... but until you change every mail application, that's how it is going to be !
OR
Network Headlines
Most Popular
MacNN Sponsor
Recent Reviews
iHome iW2 AirPlay speaker
iHome generally isn't known as a luxury brand when it comes to audio, but it is prolific -- the company's docks and speakers are every ...
Logitech Ultrathin Keyboard Cover
One of the iPad's main weaknesses has always been productivity. It's not a question of apps; while it has taken a little time for a na ...
Logitech UE Air Speaker
If maybe a little more slowly than Apple would like, AirPlay is becoming a staple of the wireless speaker market for iOS devices. The ...
Most Commented
Popular News
Joined:
Secure login is possible
Apparently, if you use the following method, your login details are secure:
Choose "Connect to Server" under the Finder's "Go" menu and enter the address: afp://idisk.mac.com.