discovered in firmware 2.x which appeared to be set to deactivate applications may be something slightly more innocuous. According to Gruber -- via "an informed source at Apple" -- the "clbl" in the aforementioned URL stands for "Core Location Blacklist" and is actually used to stipulate that specific pieces of software don't have access to... you guessed it... Core Location. Gruber argues that this makes sense, as the API is covered by fairly strict rules in Apple's SDK. So it looks like (at a glance) this was much ado about nothing -- thanks to a little misinterpretation by Jonathan Zdziarski -- though we are considering getting hot under the collar that Apple reserves the right to deny Core Location access. How dare they?