Re: Entitlements and specific files/dirs
Re: Entitlements and specific files/dirs
- Subject: Re: Entitlements and specific files/dirs
- From: Sean McBride <email@hidden>
- Date: Thu, 18 Aug 2011 12:08:18 -0400
- Organization: Rogue Research Inc.
On Wed, 17 Aug 2011 03:17:30 -0600, Michael Vannorsdel said:
>Apologies if this has been covered in the past but my searches did not
>turn up anything as specific as I'm looking for.
Are you talking about on Lion? If so, there hasn't been much discussion of this new feature here yet.
>Is there a way to refine sandbox entitlements to allow read/write access
>to specific files and directories instead of just all or none? For
>instance, only allowing RW to Caches and Preferences but nowhere else.
com.apple.security.temporary-exception.files.absolute-path.read-write
But "temporary-exception" suggests you should file bugs for better solutions.
>And on a side question, does outgoing network entitlement mean the
>binding of a port for services or does it mean any outbound data such as
>an http request?
I believe it allows any connections. I haven't seen a way to permit access to only some hosts or only some ports.
--
____________________________________________________________
Sean McBride, B. Eng email@hidden
Rogue Research www.rogue-research.com
Mac Software Developer Montréal, Québec, Canada
_______________________________________________
Cocoa-dev mailing list (email@hidden)
Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden