Post

Replies

Boosts

Views

Activity

using endpoitn security framework within a launchctl daemon
Hi, We have managed to get the endpoint security framework working using the sample code and WWDC2020 video in developer mode and with sip disabled. We have couple of questions here: The documentation says it is a c library. We already have a daemon and we would like to integrate this functionality into our daemon. Can we use this through a launchctl daemon without using the app template and extension template?If it is possible, what else is needed apart from the entitlement in a production environment? If we use a system extension template,how does an enterprise admin get around the user prompts for allowing system extensions ? Is there a way to grant full disk access by the admin without user intervention?
2
0
850
Jul ’20
Endpoint Security sample code not able to activate extension
Hi Guys, I downloaded the endpoint security sample code and used my developer team id to sign the executables, but it appears the system is not able to load the extension. I get following message in the console: Request to activate com.example.apple-samplecode.SampleEndpointApp.Extension failed with error Error Domain=OSSystemExtensionErrorDomain Code=4 "Extension not found in App bundle" UserInfo={NSLocalizedDescription=Extension not found in App bundle} One thing to note here is that , my systemextension name is com.example.apple-samplecode.SampleEndpointAppXXXXXX.Extension which got generated when I added my dev team to the project. But the app is still looking for com.example.apple-samplecode.SampleEndpointApp.Extension which is incorrect. As per the docs, the systemextension has to match the $productbundleidentifier which it does in my case, but the activation is failing. Can you please help me in getting this to work?
1
0
892
Jun ’20
is it possible to redirect traffic after filtering using network extensions?
Hi,I am looking to build an app where incoming/outgoing traffic to certain ports/ip addresses on a mac can be redirected to another machine. I understand that I can filter traffic using the content filter NE apis based on the port/ip address. However,the content filter apis only allow to either block or accept the packets whereas I want to redirect them instead of dropping them.Is it possible to do this ?In linux i can do this using iptables nfqueue functionality very easily. Is there any alternative which provides such functionality in mac osx?Any help in this regard is appreciated.
11
0
2.9k
Dec ’19