Hacker News new | ask | show | jobs
by youseecomrade 2872 days ago
Isn't a "little" insecure having to rely on random kext and random internet files to run your base system? Or are they always open source or something? I know very little about MacOS
2 comments
chrisper 2871 days ago
A lot of them are open source. But many of the kext come from reputable people from the community.

Obviously there is always a risk.

link
ryanlol 2871 days ago
It's not that different from running any software from the internet.
link
youseecomrade 2871 days ago
"[..] They (kexts) run at the OS's highest privilege level; ring-0."
link
ryanlol 2870 days ago
Why would that significantly increase risk?
link
youseecomrade 2869 days ago
> It's not that different from running any software from the internet.

I don't run "any" software as root or with even more privileges, so I would classify random kexts from the web as a highly critical threat. Of course you could be victim of an exploit even without willingly granting privileges but that's not really relevant.

link
scintill76 2870 days ago
Obligatory xkcd: https://xkcd.com/1200/
link