Thread: Kindle Touch: messy firmware, unsecure device
View Single Post
Old 06-11-2012, 10:05 AM   #20
eureka
but forgot what it's like
eureka ought to be getting tired of karma fortunes by now.eureka ought to be getting tired of karma fortunes by now.eureka ought to be getting tired of karma fortunes by now.eureka ought to be getting tired of karma fortunes by now.eureka ought to be getting tired of karma fortunes by now.eureka ought to be getting tired of karma fortunes by now.eureka ought to be getting tired of karma fortunes by now.eureka ought to be getting tired of karma fortunes by now.eureka ought to be getting tired of karma fortunes by now.eureka ought to be getting tired of karma fortunes by now.eureka ought to be getting tired of karma fortunes by now.
 
Posts: 741
Karma: 2345678
Join Date: Dec 2011
Location: north (by northwest)
Device: Kindle Touch
Quote:
Originally Posted by rfog View Post
@yifanlu, I'm the developer has said KT is unsecure, based in reading your messages.

If you read in depth my messages in Spanish, I'm talking about potential problems, not true and real ones.

Hypotetically talking, one malicious website can take control of your Kindle using some Webkit vulnerability allowing write into user partition the tar update file that will install whatever thing website wants.
Quote:
Originally Posted by rfog View Post
Don't fool yourself. Firstly, mentioned security flaw doesn't use any Webkit vulnerability. As yifanlu said, Webkit is a pretty secure web browser engine and it really is. Then, if you'll dig down to original thread about this exploit, you'll find a simple command that fix it without any negative consequences.

Anyway, I'm welcoming public discussion of this subject. It is really serious breach and Amazon doesn't do anything to fix it (for all users) for about of two weeks.
eureka is offline   Reply With Quote