The News
OmniGroup Open Sources OmniGraphSketcherFree
Flesky, a keyboard app with an SDK
StackMob sudden end of life
New Apple device configuration options
Tweet Shoutouts
@marksands - Unfair to call Flappy Bird Crappy Bird?
The Discussion
Worm in the Apple, Apple TLS bug - Discussion of what this means to support of iOS 6.
Actual Source
What is it? Description of bug, Deep Dive Description
“Note the two goto fail lines in a row. The first one is correctly bound to the if statement but the second, despite the indentation, isn't conditional at all. The code will always jump to the end from that second goto, err will contain a successful value because the SHA1 update operation was successful and so the signature verification will never fail.”
Lack of curly braces on single line conditional to blame, or lack of testing the code?
What does it mean for users?
How could this have happened and gone undiscovered for so long?
Background User Input recording discovered - Reported Monday night. Ars Article
Can you actually infer keyboard touch events?
Potential attackers can use such information to reconstruct every character the victim inputs
Note that the demo exploits the latest 7.0.4 version of iOS system on a non-jailbroken iPhone 5s device successfully
The only way to prevent attacks is to open the iOS task manager and stop questionable apps from running in the background
Picks
John (@johnsextro)
MindNode for mind mapping on the Mac and iPad. Allows for document sharing via Dropbox and MyMindNode
Joe Hainline (@josephhainline)
Rookiesapp.com of course!
Neem Serra (@teamneem)
Ray Wenderlich’s blog - Simplified tutorials that are easy to follow with complex results
Xscope - measuring, inspecting & testing on-screen graphics and layouts, $30 but very helpful for making apps match the mocks. Cool color blindness testing!
Adam Hitt
bitfulsoftware.com - Fluxboard - Kanban board for your GitHub issues.
https://projecteuler.net - Ultimate Code Kata resource!
