Jump to content

Apple intentionally created a security breach in macOS Big Sur


fantomas
  • In Big Sur Apple decided to exempt many of its apps from being routed thru the frameworks they now require 3rd-party firewalls to use (LuLu, Little Snitch, etc.)

Q: Could this be (ab)used by malware to also bypass such firewalls?

 

A: Apparently yes, and trivially so.

 

1.jpg2.jpg3.jpg

 

 

 

 

twitter


User Feedback

Recommended Comments

This is getting to be seriously concerning, first we read about BS collecting personal data of it's users and possible spying, now this. BS is turning out to be a Big Surprise. :(

  • Like 2
  • Sad 1
Link to comment
Share on other sites

People who want to know what apps and processes are exempt can open the macOS terminal and enter sudo defaults read /System/Library/Frameworks/NetworkExtension.framework/Resources/Info.plist ContentFilterExclusionList.

  • Like 1
  • Thanks 2
Link to comment
Share on other sites

On 11/19/2020 at 3:24 PM, HenryV said:

People who want to know what apps and processes are exempt can open the macOS terminal and enter sudo defaults read /System/Library/Frameworks/NetworkExtension.framework/Resources/Info.plist ContentFilterExclusionList.

 

Feedback about this: Must have typed in incorrectly I suppose?

 

MacBook-Pro ~ % sudo defaults read /System/Library/Frameworks/NetworkExtension.framework/Resources/Info.plist ContentFilterExclusionList

Password:

2022-02-19 20:20:20.143 defaults[2009:60869]

The domain/default pair of (/System/Library/Frameworks/NetworkExtension.framework/Resources/Info.plist, ContentFilterExclusionList) does not exist

Edited by makk
Link to comment
Share on other sites


×
×
  • Create New...