mirror of
https://github.com/PrivSec-dev/privsec.dev
synced 2024-12-22 21:01:34 -05:00
add mention of ocsp encryption
This commit is contained in:
parent
b44da91ea3
commit
89cdf0f870
@ -65,7 +65,7 @@ XProtect is the built-in antivirus software in macOS. Like all AV, it's a last l
|
|||||||
|
|
||||||
XProtect uses YARA signatures and is updated frequently, independent of OS updates. This is one of the many reasons you should be cautious about blocking connections to Apple servers; many of them serve a security purpose, so make sure you know what you're blocking. It can also detect unknown malware using heuristics. When it detects unkown malware, it will send information about that software to Apple so that they can update the signatures in XProtect.
|
XProtect uses YARA signatures and is updated frequently, independent of OS updates. This is one of the many reasons you should be cautious about blocking connections to Apple servers; many of them serve a security purpose, so make sure you know what you're blocking. It can also detect unknown malware using heuristics. When it detects unkown malware, it will send information about that software to Apple so that they can update the signatures in XProtect.
|
||||||
|
|
||||||
Apple also issues revocations for notarization tickets, which are detected with online OCSP checks. Blocking these checks will make you more vulnerable to malicious apps.
|
Apple also issues revocations for notarization tickets, which are detected with encrypted online OCSP checks. Blocking these checks will make you more vulnerable to malicious apps.
|
||||||
|
|
||||||
## System Integrity Protection
|
## System Integrity Protection
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user