Reply to post: Why oh why

Apple squashes cert-handling bug affecting macOS and iOS


Why oh why

Why oh why do these security researchers always blow their load by giving out all the details of a security problem on the release day of a fix, thus giving all the "bad actors" a chance to capitalise on the situation before some users have a chance tom do anything about it.

OK, I understand that they give the tech companies fair warning, but they totally forget about the users who, for one reason or another, may not be able to apply the fix immediately.

As for me I have no chance to apply iOS 10.3 or 10.10.4 before the weekend as I cannot take the risk that the updates will brick something. OK, generally they don't, but I'm in the middle of a project away from home and the office, so I'm just going to have to wing it.

I also know that the chances of me being hit by this in the next 4 days are minimal, but please, security researchers, give us users a couple of weeks before you blurt you're findings to all and sundry

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2022