• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: mDNSResponder / sandbox & Keychains
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: mDNSResponder / sandbox & Keychains

  • Subject: Re: mDNSResponder / sandbox & Keychains
  • From: Jens Alfke <email@hidden>
  • Date: Wed, 9 Dec 2009 11:05:56 -0800
On Dec 9, 2009, at 8:50 AM, Stéphane Sudre wrote:

> Why would mDNSREsponder try to access the contents of a Keychain in /Library/Keychains?

Just a guess: System.keychain contains the trusted root certificates (Verisign, Thawte, etc.) If mDNSR is doing wide-area Bonjour stuff, it might be using SSL (or other public-key crypto?) to connect to a remote DNS server.

If this is true, though, it's weird that mDNSR would be sandboxed to prevent access to this file. Maybe a bug?

—Jens _______________________________________________
Do not post admin requests to the list. They will be ignored.
Macnetworkprog mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden
References: 
 >mDNSResponder / sandbox & Keychains (From: Stéphane Sudre <email@hidden>)

  • Prev by Date: mDNSResponder / sandbox & Keychains
  • Next by Date: Trying to send data to PC
  • Previous by thread: mDNSResponder / sandbox & Keychains
  • Next by thread: Trying to send data to PC
  • Index(es):
    • Date
    • Thread