I had never heard of Zoom until they were all over the media for running an exploitable web server in the background to side-step Safari security processes. That same week I was invited to a meeting on Zoom… Not the best timing haha 😜


Consent in software is difficult. Clearly Zoom crossed a line by a) installing this web server without asking and b) not removing the web server when uninstalling the app.

The problem is that I don’t see how you can ever communicate to most end-users the implications of running a web server in this way, I suspect most would not even care and would resent even being asked during installation.

When the engineers realised that their ‘key product differentiator’ was blocked by a security feature it should have been the end of that particular differentiator. Safari security features are there to be embraced and supported, not worked around and resented.

Sign in to participate in the conversation

Server run by the main developers of the project 🐘 It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!