<html><head></head><body><div class="ydp47bef18dyahoo-style-wrap" style="font-family:Helvetica Neue, Helvetica, Arial, sans-serif;font-size:16px;"><div><div dir="ltr" data-setdir="false"><div><div>"It makes it sound like APRS is the issue when in reality it’s WinAPRS running on Windows XP."</div><div><br></div><div dir="ltr" data-setdir="false">Exatly. As soon as I saw this, I realized it was completely misleading and discounted it as hype for attention. The chance of someone running WinAPRS on XP today is pretty unlikely. I have one XP box still running at home and it's dedicated to syncing applications to my PalmPilots. That's it.</div></div></div><div><br></div><div class="ydp47bef18dsignature">Jason Rausch K4APR</div><div class="ydp47bef18dsignature"><div>www.ke4nyv.com</div></div></div>
<div><br></div><div><br></div>
</div><div id="yahoo_quoted_2006107517" class="yahoo_quoted">
<div style="font-family:'Helvetica Neue', Helvetica, Arial, sans-serif;font-size:13px;color:#26282a;">
<div>
On Sunday, April 9, 2023 at 04:00:33 PM EDT, Jeff Hochberg <jeff@w4jew.com> wrote:
</div>
<div><br></div>
<div><br></div>
<div><div id="yiv4065993533"><div><div>The article is misleading. It makes it sound like APRS is the issue when in reality it’s WinAPRS running on Windows XP. </div><div><br clear="none"></div><div>The author goes on to say the vulnerability exists in WinAPRS on Windows 10 “just not as reliably and with a lot of extra effort required”. </div><div><br clear="none"></div><div>I love the argument that open source software is inherently more secure. Vulnerabilities exist in all software. Open source provides people with the ability to review code themselves to determine if it’s vulnerable.</div><div><br clear="none"></div><div>I would venture to say that 9 out of 10 people wouldn’t know what to look for. Someone tells them open source software is more secure so they just trust it. </div><div><br clear="none"></div><div id="yiv4065993533yqt81122" class="yiv4065993533yqt0813179682"><div><br clear="none"><div class="yiv4065993533gmail_quote"><div dir="ltr" class="yiv4065993533gmail_attr">On Sun, Apr 9, 2023 at 3:45 PM Jeff Hochberg <<a rel="nofollow noopener noreferrer" shape="rect" ymailto="mailto:jeff@w4jew.com" target="_blank" href="mailto:jeff@w4jew.com">jeff@w4jew.com</a>> wrote:<br clear="none"></div><blockquote style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-style:solid;padding-left:1ex;border-left-color:rgb(204,204,204);" class="yiv4065993533gmail_quote"><div>Interesting article </div><div><br clear="none"></div><div><div><a rel="nofollow noopener noreferrer" shape="rect" target="_blank" href="https://hackaday.com/2023/04/07/arbitrary-code-execution-over-radio/">https://hackaday.com/2023/04/07/arbitrary-code-execution-over-radio/</a></div></div><div><br clear="none"></div><span>-- </span><br clear="none"><div dir="ltr">———<br clear="none"><br clear="none">Jeff Hochberg<br clear="none">W4JEW<br clear="none">470-484-8010<br clear="none"><a rel="nofollow noopener noreferrer" shape="rect" ymailto="mailto:jeff@w4jew.com" target="_blank" href="mailto:jeff@w4jew.com">jeff@w4jew.com</a><br clear="none"></div>
</blockquote></div></div></div><span class="yiv4065993533gmail_signature_prefix">-- </span><br clear="none"><div dir="ltr" class="yiv4065993533gmail_signature">———<br clear="none"><br clear="none">Jeff Hochberg<br clear="none">W4JEW<br clear="none">470-484-8010<br clear="none"><a rel="nofollow noopener noreferrer" shape="rect" ymailto="mailto:jeff@w4jew.com" target="_blank" href="mailto:jeff@w4jew.com">jeff@w4jew.com</a><br clear="none"></div>
</div></div><div class="yqt0813179682" id="yqt50593">_______________________________________________<br clear="none">aprssig mailing list<br clear="none"><a shape="rect" ymailto="mailto:aprssig@lists.tapr.org" href="mailto:aprssig@lists.tapr.org">aprssig@lists.tapr.org</a><br clear="none"><a shape="rect" href="http://lists.tapr.org/mailman/listinfo/aprssig_lists.tapr.org" target="_blank">http://lists.tapr.org/mailman/listinfo/aprssig_lists.tapr.org</a><br clear="none"></div></div>
</div>
</div></body></html>