Beaver@lemmy.ca to Canada@lemmy.caEnglish · 3 months agoAre We Too Dependent on Microsoft?www.youtube.comexternal-linkmessage-square21fedilinkarrow-up165arrow-down15cross-posted to: linux@lemmy.mlapple_enthusiast@lemmy.world
arrow-up160arrow-down1external-linkAre We Too Dependent on Microsoft?www.youtube.comBeaver@lemmy.ca to Canada@lemmy.caEnglish · 3 months agomessage-square21fedilinkcross-posted to: linux@lemmy.mlapple_enthusiast@lemmy.world
minus-squareyeehaw@lemmy.calinkfedilinkarrow-up1·3 months agoI see. How effective is a security tool that can’t stop malicious software that makes itself in ring 0?
minus-squareYaztromo@lemmy.worldlinkfedilinkarrow-up1·3 months agoYou don’t have to run in Ring 0 to detect events occurring in Ring 0. Besides which, as kexts are being obsoleted by Apple getting code to run inside Ring 0 in macOS that isn’t from Apple itself is going to be extremely difficult.
I see. How effective is a security tool that can’t stop malicious software that makes itself in ring 0?
You don’t have to run in Ring 0 to detect events occurring in Ring 0.
Besides which, as kexts are being obsoleted by Apple getting code to run inside Ring 0 in macOS that isn’t from Apple itself is going to be extremely difficult.