An Interest In:
Web News this Week
- April 4, 2024
- April 3, 2024
- April 2, 2024
- April 1, 2024
- March 31, 2024
- March 30, 2024
- March 29, 2024
Some of Our Sources
- Technology Review
- Simplebits
- Smashing Magazine
- Six Revisions
- Creative Curio
- Web Designer Depot
- Web Design Ledger
- CSS Globe
- 24 Ways
- Web Resource Source
Help Webnuz
Referal links:
January 14, 2021 02:02 pm
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/ABo4CoQHii4/apple-removes-feature-that-allowed-its-apps-to-bypass-macos-firewalls-and-vpns
Apple Removes Feature That Allowed Its Apps To Bypass macOS Firewalls and VPNs
Apple has removed a controversial feature from the macOS operating system that allowed 53 of Apple's own apps to bypass third-party firewalls, security tools, and VPN apps installed by users for their protection. From a report: Known as the ContentFilterExclusionList, the list was included in macOS 11, also known as Big Sur. The exclusion list included some of Apple's biggest apps, like the App Store, Maps, and iCloud, and was physically located on disk at: /System/Library/Frameworks/NetworkExtension.framework/Versions/Current/Resources/Info.plist. Its presence was discovered last October by several security researchers and app makers who realized that their security tools weren't able to filter or inspect traffic for some of Apple's applications. Security researchers such as Patrick Wardle, and others, were quick to point out at the time that this exclusion risk was a security nightmare waiting to happen. They argued that malware could latch on to legitimate Apple apps included on the list and then bypass firewalls and security software.Read more of this story at Slashdot.
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/ABo4CoQHii4/apple-removes-feature-that-allowed-its-apps-to-bypass-macos-firewalls-and-vpns
Share this article:
Tweet
View Full Article
Slashdot
Slashdot was originally created in September of 1997 by Rob "CmdrTaco" Malda. Today it is owned by Geeknet, Inc..More About this Source Visit Slashdot