undefined | Better HN

0 pointsthrowaway2902y ago0 comments

Not for long, since EU is mandating sideloading most games will bypass security checks on mobile too.

0 comments

That’s absolutely false — sideloading has nothing to do with security checks, especially not sandboxing.

A sane system should not be compromised no matter where the executable is from.

> A sane system should not be compromised no matter where the executable is from.

So, you're saying a sane system should not run arbitrary code I tell it to run? Which is different from iOS security model how?

(If not, please explain how your hypothetical magic OS resists compromise without limiting instructions it would execute)

kaba02y ago

You are running code on your CPU in ring 0 all the time? No. The same way a sandbox gives a whitelist approach to security — this app by default should have no filesystem access. It does want to open a file — ask the user whether it should be able to or not.

Security is upheld, user control is given, everyone is happy.

1 more reply

j / k navigate · click thread line to collapse

0 comments

kaba02y ago

That’s absolutely false — sideloading has nothing to do with security checks, especially not sandboxing.

A sane system should not be compromised no matter where the executable is from.

throwaway290OP2y ago

> A sane system should not be compromised no matter where the executable is from.

So, you're saying a sane system should not run arbitrary code I tell it to run? Which is different from iOS security model how?

(If not, please explain how your hypothetical magic OS resists compromise without limiting instructions it would execute)

kaba02y ago

Security is upheld, user control is given, everyone is happy.

1 more reply

j / k navigate · click thread line to collapse