Using Kauth vnode to prevent 'rename' syscall

Hi,



I'd like to prevet some sensitive project files from being deleted by unauthorized entities, So i use 

kauth_listen_scope
with 
KAUTH_SCOPE_VNODE
option to add new callback function that prevent other from deleting those files.


However, it appears that it's possible to move those files to trash folder from 

Finder
since it uses the 
rename
system call which doesn't goes through vnode authorization, but only fileop event (but these are for detection only).


Perhaps anyone have an alternative about what can be done in order to prevent this action ?


thanks

Up vote post of rrr1981 Down vote post of rrr1981
554 views
Posted by
rrr1981
Reply
Add a Comment

Accepted Reply 

rename
does go through vnode authorisation. However, it does not request authorisation on the item itself, but authorisation on the parent directory.

Share and Enjoy

Quinn “The Eskimo!”
Apple Developer Relations, Developer Technical Support, Core OS/Hardware 

let myEmail = "eskimo" + "1" + "@apple.com"
Posted by
eskimo
Up vote reply of eskimo Down vote reply of eskimo
Post marked as solved
Add a Comment

Replies

rename
does go through vnode authorisation. However, it does not request authorisation on the item itself, but authorisation on the parent directory.

Share and Enjoy

Quinn “The Eskimo!”
Apple Developer Relations, Developer Technical Support, Core OS/Hardware 

let myEmail = "eskimo" + "1" + "@apple.com"
Posted by
eskimo
Up vote reply of eskimo Down vote reply of eskimo
Post marked as solved
Add a Comment