Apple’s search bots have been leaking Apple’s internal IPs, a security researcher has discovered — and it took Apple over 9 months to fix it. Bleeping Computer reports: “Applebot is the web crawler for Apple. Products like Siri and Spotlight Suggestions use Applebot,” according to Apple’s knowledgebase. Last month, Security researcher and podcast creator David Coomber found out that Applebot had been using a proxy that leaked Apple’s internal IP addresses. “Although I’ve seen a couple of bots that were misconfigured, I was surprised to see Apple’s Podcast bot look for updates to my podcast (Deep House Mixes) using a proxy which leaked internal IPs and hostnames from the ‘Via’ & ‘X-Forwarded-For’ headers,” Coomber continued in his blog post… When asked for comment concerning these issues, Apple did not provide one to BleepingComputer.

Read more of this story at Slashdot.


Read more