Reuters:
When Apple has released previous security patches, it has done so through its regular software update system, which typically requires user intervention.
The company decided to deliver the NTP bug fixes with its technology for automatically pushing out security updates, which Apple introduced two years ago but had never previously used, because it wanted to protect customers as quickly as possible due to the severity of the vulnerabilities, [Apple spokesman Bill] Evans said.
Not everyone is thrilled with Apple’s decision to do this, including Shawn King at The Loop:
I understand why Apple did this but, given how much crappy software Apple has released, I’m not happy about the company “reaching into” my computer and installing software without my permission or knowledge.
I won’t argue about Apple’s track record when it comes to software quality. King is saying that because Apple’s software releases have less than great, he wants the option to hold off on a security update until he deems it okay, but in a world where a lot of people don’t update their computers very often, I don’t mind Cupertino having the power to intervene when they see needed.
It’s important to note the lack of subtlety in this line of thinking. Apple didn’t “reach in” to anyone’s system and replace their version of iWork or update their version of Final Cut Pro.
That aside, Apple’s had this ability for two years. Clearly, something about this bug was bad enough for Apple to cross the line into auto-updating. If Cupertino took the NTP issue this seriously, I think that’s worth respecting.