Mac Games and More The Blog

And don’t vote for the yucky one. Thank you.

UPDATE: Thank you for not voting for the yucky one!

From wired:

“You can fix the hole by remapping the “Home” button. In the iPhone’s Settings/General/Home Button, assign double clicking the Home button to “Home” — not “Phone Favorites.”

iPhone’s 2.0.2 firmware allows almost full access to your iPhone even when it’s under password protection, according to a report in MacRumors. Access can be gained through the “Emergency Call” keypad that appears on the passcode entry screen, allowing unrestricted use of Safari’s browser as well as access to Mail, SMS, Contacts, Maps and more.

Here’s how it works:

1. On the passcode screen hit “Emergency Call” button at bottom left.

2. In the Emergency Call screen, hit the “Home” button twice. You’ll be taken to the Favorites screen.

3. From there, hit the blue arrow next to a contact’s name.

4. You can now access all the iPhone’s functions by selecting their email address, homepage URL or address.

5. For example — hit the contact’s “Homepage” URL — and you are straight into Safari.

6. Hit the email address, and you enter Mail. Cancel the message, and you have full access to the iPhone’s email.”

From yahoonews:

“Apple CEO Steve Jobs has confirmed that the iPhone 3G has a kill switch that can remotely remove software from the devices.

Jobs told The Wall Street Journal that Apple needs the capability in case it inadvertently allows a malicious program — such as an application that steals user’s personal data — to be distributed to iPhones through its App Store.

“Hopefully we never have to pull that lever, but we would be irresponsible not to have a lever like that to pull,” Jobs said.

Switch Not Used

Jobs’ statement reveals Apple hasn’t used the kill switch yet, but the company did remove an application from the App Store last week.

Apple removed the $999 “I Am Rich” application, which had the sole purpose of showing people the owner has money. The program creates a red icon that sits on the iPhone deck with a the words “I Am Rich” underneath. After the user activates the application, it glows on the handset like a ruby.

Apple initially approved the application, which bumps up against the pricing limit for applications sold on its App Store. The company was not immediately available for comment on why it decided to pull the plug.

Disappearing Acts

But the real controversy started when Jonathan Zdziarski, author of the books iPhone Open Application Development and iPhone Forensics Manual, discovered a URL buried in Apple’s firmware. That URL links to a file dubbed “unauthorizedApps” where malicious or simply bad apps might go once they disappear from the App Store.

According to Zdziarski, I Am Rich isn’t the only app to disappear. BoxOffice (renamed to Now Playing) and NullRiver’s NetShare were also removed. But removing the applications from the App Store and removing them from a consumer’s iPhone are two different issues.

“The kill switch is a very controlling gesture. I am not sure why Apple didn’t disclose it up front as simply a security measure,” said Avi Greengart, an analyst at Current Analysis. “Consumers will accept an awful lot if you let them know what they are accepting.”

What Else is Apple Hiding?

In the past, Jobs has said he wants to be careful not to allow applications to bring down the network. Greengart doesn’t see that as a major threat, especially since Apple is approving the applications.

However, Greengart said he’s less concerned with the “heavy-handed and Big Brotherish” kill switch than the fact that Apple didn’t disclose it in the first place. As far as he knows, no other mobile phone has a kill-switch capability.

“To my way of thinking, the issue is that you don’t really know what your phone might be doing or not be doing,” Greengart said. “I am not 100 percent sure what the capability is or is not. That is the problem. What is the capability? When might they use it? When wouldn’t they use it? Is there anything else Apple is not disclosing?”

It slices! It dices! It slashes your arm in a single bound! Look! On your desk! It’s Macbook Air!

From engadget

From consumerist:

“A tech support supervisor, from what we figure to be Apple, has stepped forward to break down some behind-the-scenes workings with his underlings who sometimes make both his and consumer’s lives difficult. For instance, one of the reasons you might be on hold so long is agents using fake work codes to avoid taking calls. Also, we know that metrics rule the call centers, but, in one of the confessions, he talks about how not only is it important to not go over your average handle time, you also can’t go too far under. Just strive to be perfectly average, and you’ll go far…

“I am a tech support supervisor for a very well known computer company. (If you must know, this company is notoriously secretive. I think that’s a big enough clue.) I felt the need to respond to the “7 Confessions Of A Verizon DSL Tech Support Rep” article you ran with some insights of my own.

I also started near the beginning of a new call center that was supporting three different product lines for said computer company. Customer service was stressed over and over and over again. I’ve been with the call center for about 5 months, but I’ve worked in other non-call center positions with the company since 2002. I thought someone needed to shed light on the fact that the seven confessions are not the exception to the rule — they ARE the rule in most cases when it comes to tech support call centers.

This particular call center is all “Tier” (or Level) one support. Within this center, we have Quality Assurance to monitor the agent calls in-house. If necessary, these Tier 1 agents escalate difficult calls to Tier 2 — which can be anywhere in the world. It will almost never be the same person twice.

You’re not going to speak to someone’s actual supervisor
There is a specific, direct queue line to “Supervisor Requests” for our agents. I don’t know why most people think they will actually speak to the support agent’s actual supervisor. We’re too…”

Full article

From arstechnica:

“Apple’s approach to security can be a little bewildering at times. It’s a well-trumpeted aspect of the OS, marketed in detail on the website. Mac OS X has integrated smartcard support and Apple has certified the OS under the Common Criteria guidelines; a section of Apple’s developer site is devoted to the subject of security.

The phrase “security through obscurity” gets…”

Read full article

From Consumerist:

“Do you remember Charlie? About a year ago, Apple refused to sell her a computer because she had “too many gift cards.” The story became very popular (thanks, digg!) and Apple eventually let Charlie buy her computer.

If you thought this meant that you could use as many gift cards as you wanted in order to buy a computer from Apple, you’d be wrong. Rather than correcting the problem, they simply changed their gift card FAQ. It now reads:

Can I use multiple gift cards when making a purchase?
Yes. You can use up to six cards when making a purchase at a retail Apple Store and up to four cards at the online Apple Store

That’s too bad for reader Rhys. Rhys, like Charlie, has 7 gift cards and no access to the Apple Store.

I have exactly the same problem.
I have 7 gift cards totaling $1250. Apple refuses to sell me a computer despite having $1250 upfront.

As soon as I found I could not enter more than half my gift cards on the Apple website, I used their online chat facility. That didn’t work out so I rang Apple and was passed from Sales to Customer Service and told “no” all the way. I have filed a complaint against them with the Better Business Bureau.

Right now I’m more interested in getting money back on my gift cards than in ever getting an Apple computer, given the stupid nonsense they’ve been giving me. I understand that New York law treats gift cards like cash and states that a refund must be given for them so I might follow that route. Having said that, my next most immediate thing is to look into SC law.

We’re disappointed to hear that Apple is still treating their customers this way, because we thought the issued had been resolved. We know Apple can process this order because they did it for Charlie.

We guess that solution was just to stop all the negative PR.

What a shame! Apple has $1250 of Rhys’ money and Rhys has no computer.

Here’s some Apple people Rhys can send a complaint to:

abarney@apple.com
katiec@apple.com
dowling@apple.com
lfox@apple.com
anuj@apple.com

In addition, he could call Diana at (408 974 6401) or Sam Spoor at 800-676-2775 ext. 46447.”

From Macworld:

“If you’re using Apple’s Safari browser, PayPal has some advice for you: Drop it, at least if you want to avoid online fraud.

Safari doesn’t make PayPal’s list of recommended browsers because it doesn’t have two important anti-phishing security features, according to Michael Barrett, PayPal’s chief information security officer.

“Apple, unfortunately, is lagging behind what they need to do, to protect their customers,” Barrett said in an interview. “Our recommendation at this point, to our customers, is use Internet Explorer 7 or 8 when it comes out, or Firefox 2 or Firefox 3, or indeed Opera.”

Safari is the default browser on Apple’s Macintosh computers and the iPhone, but it is also available for the PC. Both Firefox and Opera run on the Mac.

Unlike its competitors, Safari has no built-in phishing filter to warn users when they are visiting suspicious Web sites, Barrett said. Another problem is Safari’s lack of support for another anti-phishing technology, called Extended Validation (EV) certificates. This is a secure Web browsing technology that turns the address bar green when the browser is visiting a legitimate Web site.

When it comes to fighting phishing, “Safari has got nothing in terms of security support, only…”

More