Threat Level: green Handler on Duty: Russ McRee

SANS ISC InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Software Update -- Did Apple Do Enough?

Published: 2008-04-20
Last Updated: 2008-04-21 13:52:00 UTC
by Joel Esler (Version: 2)
5 comment(s)

I've been reading alot of articles recently about Apple's Software Updates.  A couple of weeks ago, we talked about this in the ISC podcast, about Safari being automatically checked for installation if you have Apple Software Update installed.  Apple Software Update is Apple Inc.'s piece of software that keeps Quicktime, iTunes, and Safari updated on your Windows Machine.  It obviously does a lot more on our Apples.

Now, I am an Apple user, an AVID Apple user.  I own no less then 15-20 of their products, and am an avid Apple defender.  But even I said that Safari being automatically checked and enabled for download and installation on Windows machines was going a step too far.  I don't mind if it was there for download, but automatically checked?  Meh.

I don't have a Windows machine, so I haven't been able to experience this myself, but apparently Apple issued an update to Software Update last week that moved Safari down to a block called "Optional Downloads", instead of being labeled as an update.  Well, it's a great step, but I still am of the opinion that Apple didn't go far enough.  Safari is still checked by default!?

What's the big deal?  It's just an update, or even an optional download.  Well, that's fine except that Safari was checked even on machines that didn't have Safari installed on it.  Apple wasn't the forcing the download on people, but it sure wasn't making it obvious that it was an optional download.

So my question is, did Apple go far enough?  I don't think they did, I would like to see it unchecked by default as an optional download.  I don't mind if Apple offers the Windows users a better browsing experience.  ;)  But I do mind if they make the browser seem like it's a part of an already existing installation.

The problem wouldn't be so bad, but I know at some point in the near future someone, whether it's Apple or some other agency , will report that Safari as "x" amount of market share, which me, as an Apple guy will say "Yeah! We have "X"!".  But will it really be a real metric?

UPDATE:  I read an email today that had a good thought in it.  There has been alot of uproar about this "feature" in Apple's Software Update, trying to give an unsuspecting user a piece of software they may not want..  But look at IE?  Look at Windows Media Player?  Microsoft has been repeatedly (and even set a record for) fined for this "bundling".  I still don't think Apple has went far enough (unchecking the download), but I do not think they are the worst of offenders.  (Thanks Swa)

Joel Esler

http://www.joelesler.net

Keywords: Apple update
5 comment(s)
Diary Archives