diff --git a/content/posts/macos/Security Features of macOS b/content/posts/macos/Security Features of macOS index 42890cd..fa91c09 100644 --- a/content/posts/macos/Security Features of macOS +++ b/content/posts/macos/Security Features of macOS @@ -109,4 +109,10 @@ You can set the trash to [automatically empty](https://support.apple.com/en-ca/g ## Show File Extensions -You should set Finder to always [show all file extensions](https://support.apple.com/en-ca/guide/mac-help/mchlp2304/mac) to help you see when a file is masquerading as another filetype. \ No newline at end of file +You should set Finder to always [show all file extensions](https://support.apple.com/en-ca/guide/mac-help/mchlp2304/mac) to help you see when a file is masquerading as another filetype. + +## System Extensions + +There are two types of [system extensions](https://support.apple.com/en-us/120363) on macOS: legacy system extensions (also known as kernel extensions) and system extensions. Kernel extensions modify the actual kernel, giving the software extremely low-level access to your system. These are very dangerous and in fact you need to lower your security policy to even load them and they're being phased out more and more with every version of macOS. + +Newer system extensions don't directly modify the kernel, but they use APIs that give them lower level access to your system than regular apps. You should be very cautious with these as well and only allow them when absolutely necessary. \ No newline at end of file