petri

bluefire1 said:

Apple should have known better.

100% this.  The lawsuits are deserved.

Mike Wuerthele said:

petri said:

macplusplus said:

petri said:

macplusplus said:

petri said:

StrangeDays said:

nouser said:

This flaw has been in the chips since the mid 90's.  These recent Apple patches are only applicable to fairly recent devices.  What about those of us who still have lots of older hardware in daily use?  I have a lot of very usable hardware that is unable to run the latest Mac OS / IOS.  I'm confident I'm not the only one.  Not pleased with this solution since I cannot use it on all my hardware. 

Have your old devices been exploited since the mid 90’s?

That’s missing the point, the exploit existed since the nineties but hasn’t been known about till now.  Now that it’s documented and “out there”, there will be people trying to exploit it (some of them just for the hell of it).  Exploit code will become a common and tradeable
commodity and unpatched older machines will be at risk.

Here are older Macs that can install MacOS High Sierra. If you still refuse to install the latest operating system on these machines then this is your call:

• iMac models from late 2009 or later
• MacBook models from late 2009 or later
• MacBook Pro models from mid 2010 or later
• MacBook Air models from late 2010 or later
• Mac mini models from mid 2010 or later
• Mac Pro models from mid 2010 or later

macOS High Sierra can be installed on:

• macOS Sierra
  
• OS X El Capitan
• OS X Yosemite
• OS X Mavericks
• OS X Mountain Lion

If the machines are in the obsolete category Apple legally is not obligated to support them, officially vintage and obsolete products are listed in https://support.apple.com/en-us/HT201624. Those machines can install a system version that includes Gatekeeper. Gatekeeper is available since OS X Mountain Lion. With Gatekeeper one can block applications from unidentified developers and the machines remain not exploited.

Well done for needlessly posting a list.  Unfortunately it excludes a huge number of machines that are still perfectly useable and in use.  I actually fully expect Apple to patch many of them, not because they’re legally obliged but because it’s the right thing to do, for every customer.

El Capitan can be installed on machines back to 2007. And El Capitan is patched in December. Apple computers back to 10 years old are patched. So...?

Withdrawn until further update.

Wise to withdraw.  Apple aren’t being very clear about the status of pre-Sierra macOS right now, which is a shame.

A proper update for El Capitan is a must, a lot of very serviceable machines were left behind by Sierra.  But going further - my mother in law has a 2007 iMac which to this day runs perfectly and does everything she needs it to do; for her purposes there’s not a thing wrong with it.  It’s stuck on Snow Leopard, since it’s a first gen core duo processor.  It now turns out there was a serious manufacturing defect in that processor - it’s effectively been broken since the day she bought it.  Are Apple really going to leave that machine to be either binned or (more likely) left in service but wide open to hackers?

Thinking more widely than the interests of my particular mother in law, is it good news for anyone else to leave numerous older machines like hers as unpatched conduits for botnets, or exploitable weaknesses in other networks etc?  The wider community have a stake in this too.

A Lion machine on the internet has far more pressing security problems than anything related to this.

So where is the page on Apple’s website explaining that, or giving any kind of information on what support is or isn’t available for Lion, just out of interest?

tallest skil said:

petri said:

I actually fully expect Apple to patch many of them, not because they’re legally obliged but because it’s the right thing to do, for every customer.

That’s not going to happen.

Then there will be many more malware-controlled bots out there, and that’s bad news for everybody who uses the internet.  Shame.

I’ll bet MS bend their rules and patch XP for this.  

macplusplus said:

petri said:

macplusplus said:

petri said:

StrangeDays said:

nouser said:

This flaw has been in the chips since the mid 90's.  These recent Apple patches are only applicable to fairly recent devices.  What about those of us who still have lots of older hardware in daily use?  I have a lot of very usable hardware that is unable to run the latest Mac OS / IOS.  I'm confident I'm not the only one.  Not pleased with this solution since I cannot use it on all my hardware. 

Have your old devices been exploited since the mid 90’s?

That’s missing the point, the exploit existed since the nineties but hasn’t been known about till now.  Now that it’s documented and “out there”, there will be people trying to exploit it (some of them just for the hell of it).  Exploit code will become a common and tradeable
commodity and unpatched older machines will be at risk.

Here are older Macs that can install MacOS High Sierra. If you still refuse to install the latest operating system on these machines then this is your call:

• iMac models from late 2009 or later
• MacBook models from late 2009 or later
• MacBook Pro models from mid 2010 or later
• MacBook Air models from late 2010 or later
• Mac mini models from mid 2010 or later
• Mac Pro models from mid 2010 or later

macOS High Sierra can be installed on:

• macOS Sierra
  
• OS X El Capitan
• OS X Yosemite
• OS X Mavericks
• OS X Mountain Lion

If the machines are in the obsolete category Apple legally is not obligated to support them, officially vintage and obsolete products are listed in https://support.apple.com/en-us/HT201624. Those machines can install a system version that includes Gatekeeper. Gatekeeper is available since OS X Mountain Lion. With Gatekeeper one can block applications from unidentified developers and the machines remain not exploited.

Well done for needlessly posting a list.  Unfortunately it excludes a huge number of machines that are still perfectly useable and in use.  I actually fully expect Apple to patch many of them, not because they’re legally obliged but because it’s the right thing to do, for every customer.

El Capitan can be installed on machines back to 2007. And El Capitan is patched in December. Apple computers back to 10 years old are patched. So...?

Withdrawn until further update.

Wise to withdraw.  Apple aren’t being very clear about the status of pre-Sierra macOS right now, which is a shame.

A proper update for El Capitan is a must, a lot of very serviceable machines were left behind by Sierra.  But going further - my mother in law has a 2007 iMac which to this day runs perfectly and does everything she needs it to do; for her purposes there’s not a thing wrong with it.  It’s stuck on Snow Leopard, since it’s a first gen core duo processor.  It now turns out there was a serious manufacturing defect in that processor - it’s effectively been broken since the day she bought it.  Are Apple really going to leave that machine to be either binned or (more likely) left in service but wide open to hackers?

Thinking more widely than the interests of my particular mother in law, is it good news for anyone else to leave numerous older machines like hers as unpatched conduits for botnets, or exploitable weaknesses in other networks etc?  The wider community have a stake in this too.

macplusplus said:

petri said:

StrangeDays said:

nouser said:

This flaw has been in the chips since the mid 90's.  These recent Apple patches are only applicable to fairly recent devices.  What about those of us who still have lots of older hardware in daily use?  I have a lot of very usable hardware that is unable to run the latest Mac OS / IOS.  I'm confident I'm not the only one.  Not pleased with this solution since I cannot use it on all my hardware. 

Have your old devices been exploited since the mid 90’s?

That’s missing the point, the exploit existed since the nineties but hasn’t been known about till now.  Now that it’s documented and “out there”, there will be people trying to exploit it (some of them just for the hell of it).  Exploit code will become a common and tradeable
commodity and unpatched older machines will be at risk.

Here are older Macs that can install MacOS High Sierra. If you still refuse to install the latest operating system on these machines then this is your call:

• iMac models from late 2009 or later
• MacBook models from late 2009 or later
• MacBook Pro models from mid 2010 or later
• MacBook Air models from late 2010 or later
• Mac mini models from mid 2010 or later
• Mac Pro models from mid 2010 or later

macOS High Sierra can be installed on:

• macOS Sierra
  
• OS X El Capitan
• OS X Yosemite
• OS X Mavericks
• OS X Mountain Lion

If the machines are in the obsolete category Apple legally is not obligated to support them, officially vintage and obsolete products are listed in https://support.apple.com/en-us/HT201624. Those machines can install a system version that includes Gatekeeper. Gatekeeper is available since OS X Mountain Lion. With Gatekeeper one can block applications from unidentified developers and the machines remain not exploited.

Well done for needlessly posting a list.  Unfortunately it excludes a huge number of machines that are still perfectly useable and in use.  I actually fully expect Apple to patch many of them, not because they’re legally obliged but because it’s the right thing to do, for every customer.