security

Those of you who rely on a password to keep others from using your iPhone might want to keep an eye on it for a while. A workaround has just been uncovered that renders the need for a password useless, giving a user full access to Mail, SMS, Contacts, and even Safari without the use of the password.

Palringo, the rich text IM application that promised instant text, picture, and even voice messaging (but also requires you to sign up for a new IM account) has just updated their service to include instant voice messages, giving the iPhone PTT (push to talk) capabilities for the first time, without the need to sign up for a contract.

Mr. Zdziarski's discovery of a remote blacklist that gives Apple the ability to zap apps from your phone remotely was pretty concerning for us jailbreakers and NetShare owners, and even though Steve said it's only for zapping the malicious/dangerous ones to keep us secure, it's still a little frightening (though understandable I suppose) that it was kept a secret. For those who don't like the idea of Apple periodically checking out their iPhone, Mr. Zdziarski has posted a way to disable the feature.

The Wall Street Journal got a chance to sit down with Steve Jobs at the Apple HQ in California recently, where they discussed the App Store's success so far and it's importance to the iPhone and iPod touch. They also touched on that kill switch found by Jonathan Zdziarski in the iPhone's code.

Remember that code Jonathan Zdziarski found a few days ago that he said allowed the new 2.x iPhone software to phone home to Apple, letting them zap apps that they blacklisted? Initially we weren't really sure if Apple would be using it as a security precaution or to zap any apps that they don't happen to like anymore, but Daring Fireball's John Gruber has another, less dubious theory.

Jonathan Zdziarski, author of the books "iPhone Open Application Development" and the iPhone Forensics manual, found one day while conducting a forensic examination of an iPhone 3G that the code in the new 2.x software that phones home to Apple to check if an application is authorized. That's pretty scary, but what's even scarier is that if it checks as unauthorized, the iPhone will then disable it.

Businesses asked Apple to make changes to the iPhone and it's software, and they answered. Now, Gartner Inc. analyst Ken Dulaney has taken three weeks to test the iPhone 3G and iPhone 2.0 Software and review it for it's ability to deliver what large businesses are looking for in a handset, and published his results in a nine-page research note, titled: iPhone 2.0 Is Ready for the Enterprise, but Caveats Apply.

Apple has released iPhone software update version 2.0.1 and is now available for immediate download. The update adds no new features, although it does contain numerous "Bug fixes". iPhones which have been unlocked could potentially run into trouble, although we haven't received any reports yet. We recommend not updating unlocked phones until the Dev Team (or someone courageous) gives the OK. You can download the update via iTunes by connecting your iPhone and clicking on the "Check For Updates" button from the General tab.

If you have any issues or see any changes with this update, let us know!

So Aurora Feint created a big fuss when it was discovered that it was collecting contacts information on users' iPhones. They said they didn't use them for anything diabolical, but there was really no way to be sure that they're not, even if they were telling the truth (which they probably were). So, to alleviate concerns, they have updated their game to eliminate any potential privacy or security problems, and are now back in the App Store once again.

After several claims from multiple security researchers and firms accusing the iPhone of mediocre security practices, Apple seems to taking active measures to address concerns. Apple has recently listed a job opening on their site for the position of iPhone Security Engineer, based in their company headquarters in Cupertino. The listing calls for someone to "validate the security architecture for the iPhone," and produce a "major impact on Apple's embedded operating system products."