zlacker

If it was really about security (in the sense of that which benefits the end user) they'd just stick it behind a toggle and be done with it. I just think it's important to call out the misalignment - security can refer to the interests of the end user, or alternatively to the vendor. The ambiguity is convenient for PR statements.

>>fc417f+(OP)
We’ve decades of examples of simple toggles not working. Bad actors will just explain to the target the necessity of switching it on.

>>misnom+T2
Put it in the bootloader then.

The pretence that Apple makes these things for security reasons and there's absolutely no way in the world to make it possible is a bit ridiculous.

>>misnom+T2
But we have another example to look at. Why isn't this a big problem on Apple laptops?

>>Teever+p5
Laptops have always been able to virtualise, the same they can download stuff off the internet without going through the App Store. Changing that wouldn’t fly.

>>jampek+d5
Apple shipped hypervisor support back in iOS 16, then removed it!

https://taoofmac.com/space/blog/2024/07/25/0900

>>misnom+T2
You can load your own root CA on iOS devices (i did it to enable certificates issued by my own private CA). That bypasses a LOT of security issues, and yet it’s still feasible.

>>transp+D6
This is a nice post of things that bothers me in the Apple ecosystem: arbitrary limitation after arbitrary limitation.

I didn't know about the Apple Watch couldn't pair with an iPad, and I don't think even an Apple fanboy could make an excuse for that one.

>>misnom+T2
By that logic the bad actor will just explain that he needs you to log into your online bank account so could you please do that and wire some money. Such scams certainly exist but it isn't a relevant attack vector for the sort of end user security that we're talking about here.

>>kokada+Ka
> I don't think even an Apple fanboy could make an excuse for that one.

You're underestimating the strength of the reality distortion field.