Post

Replies

Boosts

Views

Activity

Local Network Access Permission
We provide software that our customers deploy on their employee work computers to secure sensitive data. We have a daemon which could connect to an on-premise web-server for certain functionality. In Mac OS 15 beta we see that there is a local network access permission dialog that comes up sometimes, and it requires a permission to be provided under the Privacy & Security section of the system preferences. We have seen the local network access permission would pop up only when both Server and Client are residing in the same private network range (eg 172.16.x.x. in our case.) When the same server is accessed from a Sequoia machine over a VPN from external network, the local network access permission does NOT pop up. But note in this case, the Sequoia machine has an IP in the 10.x.y.z range, whereas the server is at 172.16.x.y. We have the following questions: In our setup with Macs connecting to a web-server, what conditions can trigger the local network prompt? In particular, do both the client and server need to be in the same private subnet range for the prompt to be shown? Is it possible that a user at home, working on a Sequoia machine, connecting over VPN to an on-prem server, would trigger this prompt? If so, we would submit this is not expected, as a VPN is not really a local network. Is there an MDM way of automatically providing the permission, so that the prompt is suppressed? In general, is there a programmatic way of providing this permission during installation ? if yes how can we do it. How do we stop users from disabling the permission incase the user has admin rights?
21
7
3.1k
Jul ’24
Local Network Access Permision
We are having a daemon which could connect to a on premise server for certain functionality. In Mac OS 15 beta we see that there is a local network access permission dialog when coming up and it requires a permission to be provided under privacy&security section of the system preferences. Now we have also observed following behaviour also in local network access. The local network access permission would pop up only when both Server and Client are residing in the same network say (172.16.x.x.) in our case. The same server when accessed using a machine which is connected to the server using a VPN from external network "local network access permission does not pop up". We have following queries for the above observations. Is there an MDM way of providing the permission ? How do we stop users from disabling the permission incase the user has admin rights? Is there a programatic way of providing this permission during installation ? if yes how can we do it. Another general question would be like does it really need a local network access permission this case ? how to navigate this as all most every other enterprise app might be facing this issue.
0
1
265
Jul ’24
Proxy ExceptionsList charecter length limit for safari
We are using network proxy on macOS to divert network traffic. We found that when the proxy is configured with an exception list, if we exceed 685 number of characters in the exception list, then Safari is not accepting this exception list. In this case, Safari is connecting to all sites (including sites in the exception list) directly. Where as the same excption list is accepted by other browsers like Google Chrome, Firefox and MS Edge. We have not found any reference to the maximum size of this exception list for Safari browser. 1.Please share any documentation in this regard. 2. Also let us know if we can configure this maximum character limit using any suitable configuration.
1
0
445
Feb ’24