On CBS.com: Sat Night Fights Returns to CBS 11/7 9pm
BNET Business Network:
BNET
TechRepublic
ZDNet

September 29th, 2006

Clampdown at Toorcon imminent for Apple Wi-Fi flaw

Posted by George Ou @ 2:41 pm

Categories: Mobile/Wireless, Networking, News, Security

Tags:

In a possible repeat of what happened at last year's Black Hat convention with Mike Lynn and Cisco , I've just received word from Elizabeth Clarke who is the VP of Corporate Communications at SecureWorks that David Maynor will not be presenting at Toorcon.  Even as late as yesterday when I talked with Maynor on IM, Maynor was going to reveal all on Saturday.  Maynor had indicated in the past that SecureWorks wasn't keen on his presentation and he had told them that he was going anyways.  I tried to contact Clarke and Maynor for immediate comments without success but one would have to assume that SecureWorks has issued explicit instruction to David Maynor not to give the public presentation.

Maynor along with his friend Jon "Jonny Cache" Ellch is giving a technical lecture at Toorcon Seminars today and were planning to unload everything about the Apple Wi-Fi controversy tomorrow.  When I heard this announcement from SecureWorks PR, I was just getting ready to leave for the airport for Toorcon.  I still intend to go because we may see injunctions fly tomorrow.

In place of the presentation tomorrow, SecureWorks released this statement.

SecureWorks statement:
SecureWorks and Apple are working together in conjunction with the CERT Coordination Center on any reported security issues. We will not make any additional public statements regarding work underway until both companies agree, along with CERT/CC , that it is appropriate.

The statement seems to be an attempt to cool things down but it's about a month too late as far as I'm concerned.  I had known since last month that CERT had been notified of the full details of this vulnerability by SecureWorks and CERT could play the role of a neutral arbitrator on this whole mess.  However, this thing has become far too heated and it's difficult for Apple to agree to give SecureWorks any credit when they've backed themselves in to a corner with the statements they have made.  Apple's Lynn Fox has raised this to a boiling level by strongly refusing to give any credit to SecureWorks, Maynor or Ellch.  But in her strong denial, Fox essentially implied that David Maynor didn't even know the difference between FreeBSD and OS X and supplied Apple with things like crash dumps and driver disassemblies that had nothing to do with Apple Products.  As David Burke points out, Apple continued to request more information from someone they're implying is an idiot and even started an internal audit on account of what they're calling irrelevant information.

George Ou is Technical Director of ZDNet. See his full profile and disclosure of his industry affiliations.

  • Talkback
  • Most Recent of 192 Talkback(s)
OK, one last time jragosta. With feeling.
You keep begging and begging for me to repeat the proof of OSX viruses; I do not know why because as soon as the irrefutable proof is posted you just claim sources that are clearly far more qualified ... (Read the rest)
Posted by: DavidBurke Posted on: 10/23/06 You are currently: a Guest | | Terms of Use
Yes, we're all shocked  tic swayback | 09/29/06
Read the part about CERT  georgeou | 09/29/06
CERT and Michael Lynn are not the same  bkwatch | 09/29/06
I read it. So what.  tic swayback | 09/29/06
So what?  zkiwi | 09/29/06
Here's a gem from CERT I won't mind seeing again...  GW Mahoney | 09/30/06
That won't work  jragosta | 09/30/06
So?  jragosta | 09/30/06
exactly  Arm A. Geddon | 09/29/06
George it is your credibility at Stake  bkwatch | 09/29/06
Why don't you stop breaking copyright law  georgeou | 09/29/06
sorry, not me  bkwatch | 09/29/06
http://www.youtube.com/results?search_query=maynor&search=Search  DavidBurke | 09/29/06
Thank you -- removed  bkwatch | 09/29/06
So, go and sue him then  zkiwi | 09/29/06
removed  bkwatch | 09/29/06
Oh, ah well...  zkiwi | 09/29/06
sure,  JetJaguar | 09/29/06
Well, it would have meant  zkiwi | 09/29/06
look at it from George's view  bkwatch | 09/30/06
Trolls?  jragosta | 09/30/06
You got that right  JetJaguar | 09/30/06
Just aping the master  tic swayback | 09/30/06
That's the spirit!  JetJaguar | 09/30/06
Sigh. Why so one-sided?  tic swayback | 10/01/06
Does it help to have the links?  GW Mahoney | 09/30/06
Better question  jragosta | 09/30/06
Who gave you permission?  YinToYourYang-22527499 | 10/01/06
Ou, where is YOUR evidence?  dgtruckses | 09/29/06
it's really no use asking George because he either...  Arm A. Geddon | 09/29/06
your last couple of blogs sure sound like a smear campaign...  Arm A. Geddon | 09/29/06
George_Ou had his time for vindication .  Intellihence | 09/29/06
...and now he has his time for vacation.  dgtruckses | 09/29/06
Have a good time in San Diego  JetJaguar | 09/29/06
Using Burke Logic...  10k2006 | 09/29/06
Waiting for George's apology  tic swayback | 09/29/06
when the matter's resolved,  JetJaguar | 09/29/06
At this stage, there is already plenty to apologize for...  10k2006 | 09/29/06
Never, then  jragosta | 09/30/06
Great point  jragosta | 09/30/06
Ba..  D. T. Schmitz | 09/29/06
Why would Apple...  arkitty | 09/29/06
SecureWorks is the one preventing Maynor from speaking  bkwatch | 09/29/06
That's damage control  rmac897 | 09/30/06
The VIPER is coming!!!  Robert Crocker | 09/29/06
Maybe....  jragosta | 09/30/06
Don't be too quick to gloat...  Gankaku | 09/29/06
Well...  zkiwi | 09/29/06
Good lord. Wake up. Please, are you that far out?  DavidBurke | 09/30/06
rhe actual statement is  piet jansen | 09/30/06
Incorrect translation. Stick to what you know about.  DavidBurke | 09/30/06
but it seemed funny when i thought of it  IkBen | 09/30/06
Uninterested in microscopic examination of the statements  timyu | 10/01/06
what I think happend (pure speculation)  piet jansen | 09/30/06
that would make sense  rmac897 | 09/30/06
I am blinded by jealousy of Mac users?  DavidBurke | 09/30/06
A Rant to David Burke.  SheldonW | 10/01/06
Attack of the Strawmen  GW Mahoney | 09/30/06
Nice post  dgtruckses | 09/30/06
Apple developers  JetJaguar | 09/30/06
It's called PR for a reason.  SheldonW | 09/30/06
Thanks for usually seeing some point  JetJaguar | 09/30/06
While you are correct...  Rick_K | 09/30/06
Lots of words  zkiwi | 09/30/06
It's not vindication  tic swayback | 09/30/06
We can only hope...  Rick_K | 09/30/06
Come on, Tic  JetJaguar | 09/30/06
Impugning Apple's character  tic swayback | 09/30/06
Do you have a point?  jragosta | 09/30/06
Better be careful what you are implying.  DavidBurke | 09/30/06
For a 'legal professional'......  jragosta | 10/01/06
This is getting silly.  DavidBurke | 10/01/06
Nice try  jragosta | 10/01/06
Such As?  1macgeek | 10/01/06
Let me clarify;  DavidBurke | 10/01/06
Clearly you are NOT a legal professional  V-Train | 10/01/06
Wrong mvora  DavidBurke | 10/01/06
Blah blah blah  V-Train | 10/01/06
just babbling,  JetJaguar | 10/01/06
Libel? For what?  georgeou | 09/30/06
You don't know what the truth is  V-Train | 10/01/06
The truth?  jragosta | 10/01/06
For calling Lynn Fox a liar, repeatedly  tic swayback | 10/01/06
please provide quote  georgeou | 10/01/06
Do ZDNet's archives go back that far?  tic swayback | 10/01/06
From this point on Tic  georgeou | 10/01/06
Lame George  Robert Crocker | 10/02/06
Nice double standard  tic swayback | 10/02/06
Trolls?  jragosta | 10/02/06
From this point on Ou  timyu | 10/02/06
Be Careful  D. T. Schmitz | 10/01/06
Not all bad. We got some good information today.  GW Mahoney | 09/30/06
But...  zkiwi | 09/30/06
maybe they did approach others  piet jansen | 09/30/06
Aren't they?  Rick_K | 09/30/06
Ok then...  zkiwi | 09/30/06
"Ou"rchestrated assault  dgtruckses | 09/30/06
re: "Ou"rchestrated assault  barstewards | 09/30/06
george just did tell us  bkwatch | 10/01/06
Ellch's remarks at Toorcon  GW Mahoney | 09/30/06
Who's Ellch's master?  dgtruckses | 09/30/06
Ellchs looking for work  DavidBurke | 09/30/06
He already rocked the boat  dgtruckses | 09/30/06
David, really?  SheldonW | 09/30/06
I'm Sorry. He says hes looking for work. Not my opinion. Just the facts.  DavidBurke | 10/01/06
Read my post again.  SheldonW | 10/01/06
Ellch deserves some credit  GW Mahoney | 10/01/06
You are overstating my position  DavidBurke | 10/01/06
Liar?  jragosta | 10/01/06
Nothing there  jragosta | 10/01/06
Remarks  jragosta | 10/01/06
But seriously, folks  JetJaguar | 09/30/06
A very important question  rmac897 | 10/01/06
I accept your theory.  SheldonW | 10/01/06
I didn't say they faked it  JetJaguar | 10/01/06
JetJaguar exposed  GW Mahoney | 10/01/06
JetJaguar is happily married  JetJaguar | 10/01/06
JetJaguar - check this out  dgtruckses | 10/01/06
I apologize.  SheldonW | 10/01/06
By your own definition of envy;  DavidBurke | 10/01/06
Don't stereotype us!  tic swayback | 10/01/06
Ha! Good one tic!  DavidBurke | 10/01/06
Credit where credit is due?  Gankaku | 10/01/06
You got your facts wrong  georgeou | 10/01/06
What's stopping Ellch?  dgtruckses | 10/01/06
His friendship  georgeou | 10/01/06
repercussions? what repercussions?  bkwatch | 10/01/06
BS Distributor  1macgeek | 10/02/06
Look forward to proof  Gankaku | 10/01/06
Few responses  georgeou | 10/01/06
Logic  jragosta | 10/01/06
Stop the obfuscation  ARW3A | 10/01/06
Calling Lynn Fox a liar again?  tic swayback | 10/01/06
You are a liar, George  V-Train | 10/01/06
Problems with basic reasoning I see  georgeou | 10/01/06
Pot, Kettle, Black?  Robert Crocker | 10/02/06
So....  jragosta | 10/02/06
The Difference?  1macgeek | 10/03/06
so Ellch is out of the loop  bkwatch | 10/04/06
So,...  jragosta | 10/04/06
Still looking for that summary, George...  gskiii | 10/02/06
I changed my mind, you're not going to get it today  georgeou | 10/02/06
Yet another lousy excuse  jragosta | 10/02/06
Crud!  tic swayback | 10/02/06
Yeah, Right  1macgeek | 10/03/06
Put up or SHUT UP  V-Train | 10/03/06
sued by whom?  bkwatch | 10/04/06
Apple Press Release  ARW3A | 10/01/06
Press release issued by SecureWorks, true.  DavidBurke | 10/01/06
Why not parse that press release  tic swayback | 10/02/06
Apple and SecureWorks both say...  DavidBurke | 10/06/06
What about YOU, George?  1macgeek | 10/01/06
???  richvball44 | 10/01/06
A couple days  jragosta | 10/01/06
The show must go on...  SheldonW | 10/01/06
Apple virus is very old story now  DavidBurke | 10/01/06
Confused, again?  jragosta | 10/01/06
http://www.itweek.co.uk/vnunet/news/2150477/apple-osx-gets-first-virus  DavidBurke | 10/01/06
You lose  jragosta | 10/02/06
http://www.sophos.com/pressoffice/news/articles/2006/02/macosxleap.html  DavidBurke | 10/01/06
Not a virus  jragosta | 10/02/06
Deny Deny Deny.  DavidBurke | 10/01/06
Details, details  GW Mahoney | 10/02/06
wouldn't pursue this one, burke  timyu | 10/02/06
You are a misinformed liar of the worst kind  DavidBurke | 10/06/06
Were to talking to yourself?  V-Train | 10/06/06
Typo - meant "Were you talking to yourself"  V-Train | 10/06/06
MIsinformed liar...  jragosta | 10/07/06
OK, one last time jragosta. With feeling.  DavidBurke | 10/23/06
Overwhelming legal argument  jragosta | 10/06/06
Sorry  jragosta | 10/06/06
checkmate!  thelemite | 10/06/06
not a virus  rwahrens1952 | 10/01/06
More Apple lies.  SheldonW | 10/01/06
Another clueless MacBasher  jragosta | 10/02/06
I think  Rick_K | 10/02/06
Sorry  jragosta | 10/02/06
In that aspect  Rick_K | 10/04/06
Ellch and Ou are unprofessional  YinToYourYang-22527499 | 10/01/06
That was a misquote  georgeou | 10/01/06
??  richvball44 | 10/01/06
He said in a few days.  Rick_K | 10/01/06
How lame.  Rick_K | 10/01/06
I'm saying he missed a word  georgeou | 10/01/06
Were you there personally?  Rick_K | 10/02/06
Right.  jragosta | 10/01/06
A misquote?  ARW3A | 10/01/06
Added the word "character" back to the quote...  SheldonW | 10/01/06
Doesn't matter really...  GW Mahoney | 10/02/06
PLEASE learn to read  jragosta | 10/02/06
Was it really vindictiveness?  tic swayback | 10/02/06
This story is officially over?!  GW Mahoney | 10/02/06

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Click Here
advertisement

Recent Entries

Top Rated

    Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
    advertisement

    Archives

    ZDNet Blogs

    White Papers, Webcasts, and Downloads

    Enterprise Applications

    • Check out some of the easiest and most powerful ways to boost productivity while saving money on your application infrastructure. See ZDNet's comprehensive Enterprise Application resource center, now!
    • New Online Dashboard
    • Read about top issues IT decision-makers face every day, plus get cost effective solutions to real life IT problems. Oracle Topline