undefined | Better HN

0 pointsFireBeyond1y ago0 comments

And yet people will swear blind that Apple apps don't get special treatment. Whether things like this... or the earlier days of Safari where it had access to some APIs around power-saving...

Or the most nefarious, where Apple apps were able to bypass most of the TCP/IP stack tracking and send traffic directly, regardless of any on-device filtering or firewalling, like Little Snitch.

And then they claimed it was only "a temporary measure while they dealt with updating software", but they never did explain why an app like TextEdit would have ever needed a kernel network extension in the first place.

That to me was almost certainly a post-facto attempt at justification when they were caught with their hand in the cookie jar.

0 comments

fragmede1y ago

iirc, netcat was the truely embarrassing one that was signed and allowed to bypass firewalls

FireBeyondOP1y ago

Yeah, that's really problematic.

But I can't imagine contortions around "yeah, it's an exceptionally simple bundled text editor but trust us, it really needed that network kernel extension."

j / k navigate · click thread line to collapse