Read only access to the full file system seems like a reasonable request. Especially if it’s a hard to enable feature like non-default certificate profiles. IOS has been loosening-up restrictions on inter-app file sharing in 11+, why not allow the user to decide?
-
-
-
What happens when that user is easily tricked into giving up access? In security we tend to view these things as bright lines but abuse is a very gray area we tend to neglect. That is my primary worry with a feature like this.
- Još 2 druga odgovora
Novi razgovor -
-
-
you might want to read what that project is actually about. They don't want to get rid of sandboxing, but instead want to just be able to analyze all the software of their devices using proper developer / debugging tools.
-
I read the page. Im not arguing theres no way to do it. Im saying it will substantially weaken the security model
- Još 1 odgovor
Novi razgovor -
-
-
It does...
- Još 2 druga odgovora
Novi razgovor -
-
-
I agree. But I think a developer mode should be available for better security research and IR (etc) I know I’m signed on to the thing, but I never saw the text. My position is that there should be a way to have less restrictive access w/o first hacking the device.
-
I think when stated that way it’s a more reasonable position to have, but I still disagree. We both know the details matter here and almost all approaches require weakening these security models in some way.
- Još 6 drugih odgovora
Novi razgovor -
-
-
If 15 years ago, someone had predicted we’d see a billion computers with trusted boot, app signing, full disk encryption and Mandatory Access Control, I’d call them mad. And yet that’s what iOS has done. It’s been a runaway security success compared to desktop. Not even close.
- Još 1 odgovor
Novi razgovor -
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
