fun fact: modern M1 chips on the latest macOS contact the apple TSS server for bootloader signatures via plaintext http just like an iphone, and transmit their ECID (unique SoC hardware identifier) in *port 80 total plaintext* letting the backbones/IXes/NSA/CIA know the physical location of that specific computer.
this is happening on the latest and greatest M1 machines being sold right now, on the latest macOS, on every OS update.
search pcaps for gs.apple.com/188.8.131.52.
So Apple living up to its expectation of being garbage?
What happening if one blocks this transmission?
@dsfgs then the os update will not install.
@dsfgs that's not what abuse is. apple's boot security is worlds better than the tpm crap available on the pc side
We were speaking from the unencrypted surveillance part, but appreicate your insight into other aspects.
Using something like #tcpdump can help identify these. Of course at the hardware level, such software solutions can't help, one'd need other hardware intercepting/anonymising(?) the traffic, if possible.
@woodrow i dont believe that to be true, what evidence do you have for that?
@woodrow the contentfilterexclusionlist misfeature was ripped out shortly thereafter because we screamed about it. no more intentional vpn bypasses from apple at the moment.
@woodrow it was only in the betas and maybe one short lived GA release iirc
The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!