Submitted by khalmagman t3_1176z04 in technology
Interesting-Month-56 t1_j9akco8 wrote
They sandbox the message, test it, then block quarantined items from interacting with the underlying OS….
Or, just spitballing here, they could have designed the kernel so that it doesn’t take root level commands from anything in the application layer…
happyscrappy t1_j9bciws wrote
> Or, just spitballing here, they could have designed the kernel so that it doesn’t take root level commands from anything in the application layer…
They already do. The problem is they don't trust it. As there have been privilege escalation bugs before.
This is similar to Apple's "blast door" idea for messages. Neither should be necessary if software is written correctly in the first place.
BTW, Apple's "blast door" was bypassed within a year of introduction. So even that "extra layer" only slowed down the attackers, not stopped them.
first__citizen t1_j9bh6kx wrote
When there is a market.. there is a way. Unfortunately these attacks are not some teenager or a hobbyist doing in their spare time, it’s a whole industry and they make a lot of money.
nicuramar t1_j9bikvw wrote
> BTW, Apple’s “blast door” was bypassed within a year of introduction.
Not really, if you’re referring to “forcedentry” i.e. the Pegasus zero-click exploit. That exploited a part of the flow that was, at the time, outside BlastDoor (and is now inside).
happyscrappy t1_j9bk7kw wrote
I was referring to that. Thanks for the correction.
[deleted] t1_j9alwvm wrote
[removed]
JamesR624 t1_j9artwy wrote
Yes but then they wouldn't have an excuse to create Spyware for your messaging apps so they can send data of your messages to the highest advertising bidder (Not to mention to the government to help control voting patterns) and pretend it's about keeping you safe.
I got downvoted in r/android for pointing out what's actually going on here. Its amazing how much "intellectuals" on this site feel the need to pretend corporations are altruistic.
nicuramar t1_j9bicpm wrote
Maybe you got downvoted for speculation without evidence?
JamesR624 t1_j9bmu7d wrote
Because of course the corporations are gonna be honest about their motives for invading privacy and basic human rights.
"speculation without evidence" is a really nice catch all to defend any and all corporations for their corruption, greed, and violation of rights.
nicuramar t1_j9bn9vu wrote
I am not defending anyone. I am suggesting that you speculate without evidence. While that’s everyone right, of course, it’s important to separate speculation from facts.
seweso t1_j9auv5q wrote
Layers layers layers!
Sirrplz t1_j9bfwzp wrote
Some executive suggested more steps involved because they read an article once
nicuramar t1_j9bi9kt wrote
> Or, just spitballing here, they could have designed the kernel so that it doesn’t take root level commands from anything in the application layer…
Sure, but exploits happen from time to time.
nicuramar t1_j9biqp1 wrote
Multiple layers of security is completely standard, and necessary in practice as demonstrated many times.
Viewing a single comment thread. View all comments