Hacker News new | ask | show | jobs
by likeabatterycar 621 days ago
So the threshold of concern by a "security" company is "they might audit your apps and find out you're gay!"

Yet not a single concern about tethering an iPhone (with an external connection) to a PC on the company's internal network, bypassing all firewalls, proxies, and other protections. That is grounds for immediate dismissal at some places.

I expect security people to think more like network engineers and less like teenagers gossiping in the canteen.
3 comments
lxgr 621 days ago
What do you mean by "tethering an iPhone to a PC"? iPhone Mirroring does not grant the iPhone any privileges to data on the Mac, as far as I know.

Also, there are two orthogonal concerns at play here: Companies generally don't want personal devices (at least those not covered by MDM) to hold company data, but companies also might not want to inadvertently hold personal data of their employees.

link
unsnap_biceps 621 days ago
This isn't about tethering. It's about mirroring which requires the iPhone and Mac to be on the same WiFi. And you can't route data from the Mac through the phone via mirroring
link
lxgr 621 days ago
I don't think iPhone Mirroring requires both devices being on the same (or in fact any) Wi-Fi network. It does however require them to be signed in to the same iCloud account.
link
unsnap_biceps 621 days ago
Pairing requires bluetooth, streaming requires WiFi,

https://support.apple.com/en-us/120421

Under iPhone Mirroring system requirements

Your iPhone and Mac are signed in to the same Apple Account using two-factor authentication.

Your iPhone and Mac have Bluetooth and Wi-Fi turned on.

Your iPhone is not sharing its cellular connection (Personal Hotspot is not in use).

Your Mac is not sharing its internet connection or using AirPlay or Sidecar.

link
lxgr 621 days ago
Wi-Fi needs to be turned on, but the connected network is irrelevant, similar to AirDrop.
link
illiac786 621 days ago
Interesting that it works no matter the WiFi. But it’s still not tethering.

Lots of people who are entitled to a corporate smartphone also have a single phone with two sims for work/personal, because of the same reasons: cheaper, more convenient, large data plans on corporate device. These devices are MDM enrolled and the company will at least check what apps are installed.

link
dml2135 621 days ago
I’ve noticed this as well, but actually not sure how the feature works if not over the LAN. Is it bluetooth? Or synced over icloud?
link
happyopossum 621 days ago
It's direct peer-to-peer wifi
link
floam 614 days ago
Google "awdl"
link
floam 614 days ago
Bypassing firewalls and proxies how?
link