|
|
|
|
|
|
by EvilTrout
5194 days ago
|
|
|
Question: In the example given, you supply a salt and a domain when coming up with your UDID. Isn't the salt of another app really easy to decompile and figure out? After that, a competing app could find out if you've used the device ID already, which actually seems less secure than the original UDID apple provided. The last thing I want is for apps I install to phone home with a list of other apps I have installed! |
|
|
Back when I was keeping up, it was also possible to read the mobile installation cache and get access to all of your installed applications, which is what some 'app recommender' applications did. That was an exploit which violated App Store policies - no idea if it still works.