The below is an off-site archive of all tweets posted by @mjtsai ever

February 15th, 2016

@rosyna @drewthaler Even for things that would never be approved in the Mac App Store, so that every Developer ID app can be sandboxed.

via Tweetbot for Mac in reply to rosyna

@rosyna @drewthaler If that sort of thing is a major concern, Apple should offer lots more entitlements.

via Tweetbot for Mac in reply to rosyna

@rosyna In terms of actual problems affecting Mac users, I read a lot more stories about bugs and bad apps than this type of exploit.

via Tweetbot for Mac in reply to rosyna

@rosyna I’m familiar with that, but it seems like a relatively small risk compared with plain bugs (like Adobe’s) and malicious apps.

via Tweetbot for Mac in reply to rosyna

@rosyna But, aside from your example of Flash, where is the code that’s exploiting these bugs?

via Tweetbot for Mac in reply to rosyna

@rosyna So you’re saying that the reason the Mac App Store requires sandboxing is to protect against Flash, which most apps don’t use?

via Tweetbot for Mac in reply to rosyna

@rosyna Where is that code running? And why wouldn’t it also be able to make the app ask the user which files to destroy, as you say?

via Tweetbot for Mac in reply to rosyna

@rosyna Macworld and others have reported it’s to protect against malicious apps that made it through App Review: macworld.com/article/293723…

via Tweetbot for Mac in reply to rosyna

@rosyna Apple’s docs says "Enable App Sandbox to Minimize Damage from Malicious Code". developer.apple.com/library/mac/do…

via Tweetbot for Mac in reply to rosyna

@rosyna I’m not sure how the original reason the technology was developed is relevant to the policy decision about using it now.

via Tweetbot for Mac in reply to rosyna