california police are apple’s private army

so some engineer at apple lost his phone, which just happened to be a prototype of the iphone 4.

apple responded by sending the police to kick jason chen’s door in and take all of his shit.

the story breaks down like this: gizmodo acquired the phone, then published a bunch of stuff about it, apple asked for the phone back, gizmodo complied, and then apple turned around and sent the cops to wreak havoc, presumably as punishment for leaking news on the jesus phone. i already pretty much hate apple because of their love affair with control of the iPlatform, but this gestapo bullshit cinches it.

also, if you aren’t using block level crypto on your laptops and servers, now is the time to start. srsly.

so the burning question for me is, how can apple do this? why do the cops just do what apple tells them? don’t people who publish news have protections under that pesky little document called the constitution?

the right way to respond to being hacked

a server that was part of the apache software foundation‘s development infrastructure got rooted earlier this month. it was a pretty interesting combination of targeted phishing (using bug submissions, not email) and cross site scripting.

it started with a targeted attack and ended with the attackers getting full root access on one of the machines and launching an attack on the hosting company.

kudos to ASF for their detailed disclosure of the attack. you used your own misfortune to help make everyone else more secure. good job guys.

all too often an organization gets its collective feelings hurt over a breach and tries to hide the fact, or they lie about it.