• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: Browser filtering
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Browser filtering

  • Subject: Re: Browser filtering
  • From: eveningnick eveningnick <email@hidden>
  • Date: Thu, 9 Dec 2010 16:33:03 -0800
Hello, Quinn
Thanks a lot for conspicuous answers!

> IMO this is a two horse race between a socket filter NKE and ipfw.  In your situation I'd go with a socket filter, but I have lots of kernel programming experience (-:

What kind of NKE filter would you choose in my case? Would it be
Socket Filter, or IP filter? The former as i understand, is easier to
implement, but an instance of it will be allocated for every new
opened socket. The latter will be one for an interface, which reduces
the waste of system resources but i am faced with more "raw" data.
What would you suggest?

Also i am wondering, what is Apple-suggested practice for
"security"-oriented applications, like this one. Where it is more
likely to place binaries - control UI application, launchd daemon
(which loads kext), and kext itself? I am thinking about having a
bundle, which user copies to applications. That bundle in its
/Contents/MacOS/ contains ControlPanel of my app. Somewhere in
/Contents/HelperTools it has a daemon's binary and and an NKE kext.
This kext has to have a root:wheel owner, and 755-access rights, which
should be explicitly set somehow - by ControlPanel, being launched
first time (it should become root's itself, to be able to set these
permissions), or by installation script (what is the best practice for
drivers?).
The bundle can be moved to trash accidently (or intentionally), but
the driver will remain in memory, and launchd will think that the
driver-launching daemon is still in
/Application/Contents/HelperTools/, throwing every 10 seconds an alert
on next system boot. Should i provide an uninstaller, or should i
track the system event of moving the bundle to trash and remove the
launching daemon'splist together with unloading the kext from memory?

It's my first time trying to develop a driver, i'd like to know how
things are done by experienced people :)
Thanks again!
 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Macnetworkprog mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden
  • Follow-Ups:
    • Re: Browser filtering
      • From: eveningnick eveningnick <email@hidden>
    • Re(2): Browser filtering
      • From: Peter Lovell <email@hidden>
References: 
 >Browser filtering (From: eveningnick eveningnick <email@hidden>)
 >Re: Browser filtering (From: "Quinn \"The Eskimo!\"" <email@hidden>)
 >Re: Browser filtering (From: eveningnick eveningnick <email@hidden>)
 >Re: Browser filtering (From: "Quinn \"The Eskimo!\"" <email@hidden>)

  • Prev by Date: Re: Browser filtering
  • Next by Date: Re(2): Browser filtering
  • Previous by thread: Re: Browser filtering
  • Next by thread: Re(2): Browser filtering
  • Index(es):
    • Date
    • Thread