[kaba0]

Funnily enough, it would simply never work on a mobile OS — it’s the desktop OSs that are at the optimistic 90s levels of security, still.

[throwaway290]

Not for long, since EU is mandating sideloading most games will bypass security checks on mobile too.

[kaba0]

That’s absolutely false — sideloading has nothing to do with security checks, especially not sandboxing.

A sane system should not be compromised no matter where the executable is from.

[throwaway290]

> A sane system should not be compromised no matter where the executable is from.

So, you're saying a sane system should not run arbitrary code I tell it to run? Which is different from iOS security model how?

(If not, please explain how your hypothetical magic OS resists compromise without limiting instructions it would execute)

[kaba0]

You are running code on your CPU in ring 0 all the time? No. The same way a sandbox gives a whitelist approach to security — this app by default should have no filesystem access. It does want to open a file — ask the user whether it should be able to or not.

Security is upheld, user control is given, everyone is happy.

[throwaway290]

Well if we are talking sandboxing, Windows has it and this malware specifically has sandbox escape functionality for that purpose.

[kaba0]

What kind of sandbox does Windows have? All I could find was about a pro/enterprise feature but even that has to be explicitly started and I doubt minecraft users used that.

Not having admin rights is almost uselessly crude as a “sandbox”.