Apple and AT&T Will Learn that User Agents are no good for access control
Apple iPhone users can access the Internet free of charge through AT&T hotspots, that's what Macrumors is reporting. That's a great additional feature for iPhone users and apparently for everyone else as well. The way of determining if a device is eligible for free access is by checking the User Agent of the device. Each browser identifies itself when it connects to the Internet through the user agent, which may reveal information about the operating system, language or version.
We all know that it is very easy to spoof the User Agent of any browser to a custom string, and while you can select anything you want, you can select user agents from different devices or browsers to make services believe you are using such a device or browser. All that needs to be done now is to change the User Agent of the browser to the User Agent of the iPhone's browser.
The User Agent of the iPhone browser is Mobile Safari 1.1.3 - iPhone. A user with Firefox or Opera can now easily change his User Agent to the one used by the iPhone to access the Internet without costs at every AT&T hotspot. One possible add-on that can be used for Firefox would be the User Agent Switcher.
User Agents are definitely not a secure way to protect a network or website from unauthorized access. The same can be said for referrer checks which are as insecure. It probably will only be a matter of time before AT&T decides to change the way the free access is granted. Probably through a small application that needs to be run on the iPhone instead or by adding other types of verification to the process.
Update: It is unlikely that this hole will remain open for too long though.
Advertisement
If Nothing OS is nothing more that an overlay with Google still in the midst….then I ain’t interested.
Another unrelated comment older than the article. Pathetic.
it is becoming mindbogglingly annoying indeed…
Under: https://www.ghacks.net/2023/09/12/iphone-15-with-usb-c-port/
Apple was forced to add USB-C to a phone and the maccultists start talking about “revolution” and “paradigm shift” (as if USB phones had never come out before). It’s so ridiculous it’s reminiscent of comedians doing the “stepped on a water hose” stunt – that was at least somehow funny a hundred years ago.
Reading this on a site that used to be a technical resource is especially ridiculous.
How pathetic
“An iPhone 15 with a USB-C port will mean more than you think”
That Apple can finally stop hindering progress if spanked hard enough ?
I’m thrilled to see Instagram taking steps to enhance the user experience with features like Live Activities. This update is a game-changer, especially for those who frequently upload content on the platform.
The ability to track upload progress in the background is a simple yet incredibly useful addition. It not only keeps users informed about the status of their uploads but also allows for a more seamless experience on the platform. No more constantly checking if your post has successfully uploaded or worrying about interrupted uploads due to a weak signal.
As an active Instagram user, this feature is a relief. It showcases Instagram’s commitment to improving user satisfaction and addressing common pain points. It’s all about making the platform more user-friendly, and this feature certainly accomplishes that.
I can’t wait to try out Live Activities and enjoy a stress-free posting experience. Kudos to Instagram for continually innovating and making our social media lives easier!
Keep up the great work, Instagram, and thanks to ghacks for keeping us in the loop with the latest tech updates!
I am additionally add one more think if you want to watch instagram stories anonymously to visit site storysnooper.com.