Path: ...!fu-berlin.de!uni-berlin.de!individual.net!not-for-mail
From: Jolly Roger <jollyroger@pobox.com>
Newsgroups: misc.phone.mobile.iphone,comp.sys.mac.system,comp.sys.mac.advocacy
Subject: Re: Is everyone as blissfully ignorant as the Apple zealots are?
Date: 4 Jul 2024 17:37:39 GMT
Organization: People for the Ethical Treatment of Pirates
Lines: 56
Message-ID: <leo4v3Fkdk4U3@mid.individual.net>
References: <v66duj$19j2$1@nnrp.usenet.blueworldhosting.com>
X-Trace: individual.net bZQChivFHkFFWrZdn18CQgvy0Ebr8TwHJGhy52gFvuppNBsIE/
Cancel-Lock: sha1:JAd7jH5smlvIxklNsCpt5jD//lk= sha256:nanxfNKA9O4nr1s2l2F6HWa4fZiFyfjTD7tbOMcWGfY=
Mail-Copies-To: nobody
X-Face: _.g>n!a$f3/H3jA]>9pN55*5<`}Tud57>1<n@LQ!aZ7vLO_nWbK~@T'XIS0,oAJcU.qLM
 dk/j8Udo?O"o9B9Jyx+ez2:B<nx(k3EdHnTvB]'eoVaR495,Rv~/vPa[e^JI+^h5Zk*i`Q;ezqDW<
 ZFs6kmAJWZjOH\8[$$7jm,Ogw3C_%QM'|H6nygNGhhl+@}n30Nz(^vWo@h>Y%b|b-Y~()~\t,LZ3e
 up1/bO{=-)
User-Agent: slrn/1.0.3 (Darwin)
Bytes: 3280

On 2024-07-04, Andrew <andrew@spam.net> wrote:
>
> The Apple religious fundamentalists apparently never read the news.
> They endlessly claim things even Apple wouldn't dare to claim.  Why?
>
> Do they never read the news?
>
> They even deny that bugs, which are widely reported, are in the Apple
> products (such as the recent vast CocoPods vulnerabilities).
>
> What's wrong with these Apple religious fundamentalists?
>
> Is everyone as ignorant as they are?

Why do you spend countless hours every day trolling newsgroups of
products for which you hold an irrational hatred, little Arlen?

Nobody in this news group denied the existence of CocoaPods
vulnerabilities, little Arlen. Why do you feel the need to lie?

Why do you have so much trouble understanding that the vulnerabilities
weren't in Apple software but in a repository system used not by Apple,
but by app developers?

And why didn't you know that an enormous number of open source
vulnerabilities remain unpatched for 10 years and longer?

Open source vulnerabilities remain unpatched for decades
<https://www.itweb.co.za/article/open-source-vulnerabilities-remain-unpatched-for-decades/wbrpO7gPwGdMDLZn>
---
A new report reveals an enormous number of identified open source
vulnerabilities remain unpatched for 10 years and longer, often because
organisations have no idea what open source code they are using.
..
..
..
With software developers routinely taking code from open source
repositories to embed in their company's products to speed up the
development process, saving time and money, manually tracking
components, their versions and their vulnerabilities is way beyond the
capabilities of most organisations.

The report recommends all organisations invest in an automated solution
for identifying and patching known vulnerabilities. "You can't patch
software if you don't know you are using it," the authors point out.
---

Your own ignorance is showing, little Arlen. Unbeknownst to you, these
CocoaPods vulnerabilities are not an uncommon phenomenon, and this is a
problem on all platforms.

-- 
E-mail sent to this address may be devoured by my ravenous SPAM filter.
I often ignore posts from Google. Use a real news client instead.

JR