this post was submitted on 09 Dec 2023
53 points (93.4% liked)

Apple

17481 readers
162 users here now

Welcome

to the largest Apple community on Lemmy. This is the place where we talk about everything Apple, from iOS to the exciting upcoming Apple Vision Pro. Feel free to join the discussion!

Rules:
  1. No NSFW Content
  2. No Hate Speech or Personal Attacks
  3. No Ads / Spamming
    Self promotion is only allowed in the pinned monthly thread

Lemmy Code of Conduct

Communities of Interest:

Apple Hardware
Apple TV
Apple Watch
iPad
iPhone
Mac
Vintage Apple

Apple Software
iOS
iPadOS
macOS
tvOS
watchOS
Shortcuts
Xcode

Community banner courtesy of u/Antsomnia.

founded 1 year ago
MODERATORS
all 36 comments
sorted by: hot top controversial new old
[–] [email protected] 26 points 11 months ago (3 children)

Isn’t it funny that every tech commenter was like “Apple would have to re-engineer their whole iMessage stack if they want to cut off access to Beeper Mini”?

[–] [email protected] 23 points 11 months ago* (last edited 11 months ago) (2 children)

That would seem to imply that tech commenters know less than Apple about Apple’s own servers. Shocking.

My bet is that is if Apple comments at all, they will talk about closing a security vulnerability rather than cutting off android users.

[–] [email protected] 4 points 11 months ago (2 children)

My bet is that is Apple comments at all, they will talk about closing a security vulnerability rather than cutting off android users.

Aaaand you were right!

[–] [email protected] 1 points 11 months ago

@EliasChao @apple_enthusiast That’s essentially the same thing, LMAO.

[–] [email protected] 1 points 11 months ago

And the founders quote is hilarious.

“if Apple truly cares about the privacy and security of their own iPhone users, why would they stop a service that enables their own users to now send encrypted messages to Android users, rather than using unsecure SMS?”

One of these things are their own iPhone users. One of them is not.

Swoosh.

If you want security, stay in the Apple ecosystem and you don’t need to send to insecure android users.

[–] [email protected] 6 points 11 months ago* (last edited 11 months ago) (1 children)

The thing with this service is, if I understand it correctly, that they were using someone else’s device ID to send messages.

So, say for example that someone started using my Mac Mini’s ID (my Mac being located in Madrid, Spain) to send iMessages in the US….

People expected Apple not noticing it?

It worked when it was some hacker’s project because at that time, a few stolen Apple device IDs didn’t raise too many red flags. But at a large scale, and used by a company, it may be easy for Apple to detect.

And don’t be fooled: the system worked by stealing someone else’s legitimate device ID, and pose as it to send messages to the system. So, this company could be making money by using you Apple device ID. I’m not ok with that.

[–] [email protected] -1 points 11 months ago (1 children)

Why would Apple have to reverse engineer their own protocol?

[–] [email protected] 7 points 11 months ago (1 children)
[–] [email protected] 5 points 11 months ago

D'oh. Shouldn't have commented before getting out of bed.

[–] [email protected] 8 points 11 months ago

That didn’t take long. Unsurprised though.

[–] [email protected] 8 points 11 months ago

With pypush the error seems to come when generating validaiton data (it either gets stuck endlessly or shows a error saying no cert found). Pypush is still able to communicate with apples sms gateway (and the gateway still sends sms replies). Additionally 2fa codes are still triggered and sent.

The weirdest part is even if you import your own real mac serial (data.plist) the same issue arises (I tried with my personal 2011 mac mini).

I wonder if the issue specifically relates to pypush trying to spoof a m1 mac using a intel mac serial, or the uncanny vally of registering a phone number through a mac serial.

[–] [email protected] 6 points 11 months ago (1 children)

This is the second service in as many weeks to be shut down offering this service, right?

[–] [email protected] 14 points 11 months ago (2 children)

Yep; different circumstances though.

Beeper Mini was shut down by Apple, which allegedly identified the requests from Beeper Mini and terminated access to its servers.

Nothing Chat/Sunbird, on the other hand, was shut down from themselves, because they were caught mishandling user information. The method itself was not shut down, rather they discontinued their own implementation. (Fwiw, Beeper has a similar implementation on another product of theirs, which remains functional as far as I know. )

[–] [email protected] 2 points 11 months ago

It’s down as well. Beeper iMessage bridge is affected too.

[–] [email protected] -1 points 11 months ago (1 children)

Gotta keep up the social pressure to bully more people into buying iPhones.

[–] [email protected] -1 points 11 months ago (3 children)

No one bullies anyone. It’s a choice.

[–] [email protected] 2 points 11 months ago (1 children)

You're right. Bullying is a choice.

[–] [email protected] -5 points 11 months ago* (last edited 11 months ago)

It is, but that’s not what happening. Downvoting because you don’t agree - so is bullying by negating any comment you don’t agree with.

[–] [email protected] 1 points 11 months ago (1 children)

I don't think you've been around a group of American teenagers recently. There's a point where people stop caring, but people absolutely are borderline bullied of for not having an iPhone lol

[–] [email protected] 2 points 11 months ago* (last edited 11 months ago)

No, I have not been around any American teenagers for quite a while. I moved from America to Europe a couple of decades ago and the teenagers here (nl) don’t seem to care so long as a can communicate with their friends, one way or the other. We use WhatsApp, Facebook, messages randomly.

It’s not like I grew up without peer pressure… We would be pressured for everything, haircuts clothing, what we watched, what we listen to, what we read, what games we played on what consoles… Are we all so different now? Or is there a lot less guidance for young people these days?

Sad, really. I sometimes wonder if parents should’ve really kept kids away from social media until they’re old enough to know that what other people think isn’t necessarily as important as to what you believe in…

But by then, they could be in their 30s.

[–] [email protected] 0 points 11 months ago (1 children)
[–] [email protected] 2 points 11 months ago

You would think teens need guidance in these things, and shouldn’t be left to fend on their own.

[–] [email protected] -2 points 11 months ago (1 children)

Good. Beeper Mini was a gross hack based on an edge case trick that they shouldn’t have been charging for.