Thread: Security threat with iOS 4 and iPad and pdf's
View Single Post
Old 08-05-2010, 11:35 AM   #16
Maggie Leung
Wizard
Maggie Leung beat Jules Verne's record by 5 days.Maggie Leung beat Jules Verne's record by 5 days.Maggie Leung beat Jules Verne's record by 5 days.Maggie Leung beat Jules Verne's record by 5 days.Maggie Leung beat Jules Verne's record by 5 days.Maggie Leung beat Jules Verne's record by 5 days.Maggie Leung beat Jules Verne's record by 5 days.Maggie Leung beat Jules Verne's record by 5 days.Maggie Leung beat Jules Verne's record by 5 days.Maggie Leung beat Jules Verne's record by 5 days.Maggie Leung beat Jules Verne's record by 5 days.
 
Posts: 1,449
Karma: 58383
Join Date: Jul 2009
Device: Kindle, iPad
Quote:
Originally Posted by toddos View Post
Once you've used this security hole to jailbreak your device, install the PDF Loading Warner tweak from Cydia to prevent other sites from exploiting the hole silently. This will make Safari warn you any time it's about to open a PDF file, so if you didn't just explicitly tell it to open a PDF you would've been hacked without this in place (of course if you say "Yes", you'll be hacked anyway).
Your message seems to say that you will be automatically hacked when you open a PDF. Is that true? Not sure how the hacking works. I was guessing that opening a PDF left you open to hacking because of the two security holes, but that didn't mean you'd be automatically hacked.

Separate questions: If you do open a PDF, how long is the "window" for someone to be able to hack you? How would hackers know when you open a PDF, so that they can time their hacking?

I'm not sure I've ever opened PDFs on my iPad, but I'd like to know this stuff, to judge how much risk there actually is. Some of the news reports said that the weaknesses hadn't been exploited so far, but hacking was expected. How can they tell whether any hacking has happened? Is such a statement credible, or more likely PR spin?
Maggie Leung is offline   Reply With Quote