fantomas Posted November 19, 2020 Share Posted November 19, 2020 In Big Sur Apple decided to exempt many of its apps from being routed thru the frameworks they now require 3rd-party firewalls to use (LuLu, Little Snitch, etc.) Q: Could this be (ab)used by malware to also bypass such firewalls? A: Apparently yes, and trivially so. twitter View full article 8 Link to comment https://www.insanelymac.com/forum/topic/345807-apple-intentionally-created-a-security-breach-in-macos-big-sur/ Share on other sites More sharing options...
HenryV Posted November 19, 2020 Share Posted November 19, 2020 People who want to know what apps and processes are exempt can open the macOS terminal and enter sudo defaults read /System/Library/Frameworks/NetworkExtension.framework/Resources/Info.plist ContentFilterExclusionList. 1 2 Link to comment https://www.insanelymac.com/forum/topic/345807-apple-intentionally-created-a-security-breach-in-macos-big-sur/#findComment-2744835 Share on other sites More sharing options...
Muaitai Posted November 28, 2020 Share Posted November 28, 2020 Apple is addressing this issue in the article below: https://support.apple.com/en-us/HT211931 Link to comment https://www.insanelymac.com/forum/topic/345807-apple-intentionally-created-a-security-breach-in-macos-big-sur/#findComment-2745745 Share on other sites More sharing options...
azul líder Posted December 26, 2020 Share Posted December 26, 2020 I'm pretty sure that's actually about a separate, stupid issue. Link to comment https://www.insanelymac.com/forum/topic/345807-apple-intentionally-created-a-security-breach-in-macos-big-sur/#findComment-2747687 Share on other sites More sharing options...
makk Posted February 20, 2022 Share Posted February 20, 2022 (edited) On 11/19/2020 at 3:24 PM, HenryV said: People who want to know what apps and processes are exempt can open the macOS terminal and enter sudo defaults read /System/Library/Frameworks/NetworkExtension.framework/Resources/Info.plist ContentFilterExclusionList. Feedback about this: Must have typed in incorrectly I suppose? MacBook-Pro ~ % sudo defaults read /System/Library/Frameworks/NetworkExtension.framework/Resources/Info.plist ContentFilterExclusionList Password: 2022-02-19 20:20:20.143 defaults[2009:60869] The domain/default pair of (/System/Library/Frameworks/NetworkExtension.framework/Resources/Info.plist, ContentFilterExclusionList) does not exist Edited February 20, 2022 by makk Link to comment https://www.insanelymac.com/forum/topic/345807-apple-intentionally-created-a-security-breach-in-macos-big-sur/#findComment-2777081 Share on other sites More sharing options...
makk Posted February 22, 2022 Share Posted February 22, 2022 Funny thing, Big Sur 11.6.0 runs extremely fast as compared to those with security updates such as 11.6.4. Link to comment https://www.insanelymac.com/forum/topic/345807-apple-intentionally-created-a-security-breach-in-macos-big-sur/#findComment-2777202 Share on other sites More sharing options...
Recommended Posts