• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: interception of socket connections?
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: interception of socket connections?

  • Subject: Re: interception of socket connections?
  • From: Apple Developer <email@hidden>
  • Date: Wed, 27 Aug 2003 12:13:57 -0700
Hi,

The project is a non-announced product with two high profile companies and I am sure that our market competitors read this list. So I really can not go into details concerning what we are trying to do. I am kind of against the wall as to what I can say ( damn those marketing dwebs )

I am thinking that I am going to use a technical support incident with Apple to handle this more *quietly*...

I do thank you all for helping us out thus far.


On Wednesday, August 27, 2003, at 12:00 PM, Douglas Davidson wrote:

On Wednesday, August 27, 2003, at 11:30 AM, Quinn wrote:

Another option is to use a firewall divert socket. This avoids the need for messing around with NKEs (which is good for a number of reasons, see below), at the cost of having to mess around with the firewall (which, as I mentioned earlier today, has no useful API on Mac OS X). "man ipfw" gives you more information about the facilities of the firewall.

NKEs are problematic for a number of reasons:

1. They live in the kernel and, as a general rule, you should avoid running code in the kernel if you can.

2. They're part of the BSD subsystem, which currently has no binary compatibility guarantee. Apple is planning on adding a binary compatibility promise to the BSD parts of the kernel in the future (we discussed this Kernel Programming Interfaces (KPI) effort at WWDC this year), but for now NKE developers often have to rev when the system revs.

There may be other possibilities in userland, e.g. something like what tcp_wrappers does, but it really depends on the goals and constraints of the project.

Douglas Davidson
_______________________________________________
macnetworkprog mailing list | email@hidden
Help/Unsubscribe/Archives: http://www.lists.apple.com/mailman/listinfo/macnetworkprog
Do not post admin requests to the list. They will be ignored.


Randy Chapel
Mac, Window, Unix, Palm, Internet and Java engineering
www.chapelhome.com, www.impactdev.com
_______________________________________________
macnetworkprog mailing list | email@hidden
Help/Unsubscribe/Archives: http://www.lists.apple.com/mailman/listinfo/macnetworkprog
Do not post admin requests to the list. They will be ignored.
References: 
 >Re: interception of socket connections? (From: Douglas Davidson <email@hidden>)

  • Prev by Date: Re(2): interception of socket connections?
  • Next by Date: Re: Problems building with SCF and XCode
  • Previous by thread: Re: interception of socket connections?
  • Next by thread: Re(2): interception of socket connections?
  • Index(es):
    • Date
    • Thread