[Discuss] Port Scanning
Rich Pieri
richard.pieri at gmail.com
Fri Aug 2 08:38:28 EDT 2024
On Fri, 2 Aug 2024 07:35:22 -0400
Dan Ritter <dsr at randomstring.org> wrote:
> The second biggest problem is that we started using a
> firewall-evading technology to invite other people to run code on
> our machines -- web browsers.
This is a big piece of why Kent's perfectly secure system is a myth: no
matter how much you harden the OS, applications still need to run on
it. Probably the closest to perfection we have right now is iPhone. The
OS is very hardened and locked down. Applications have a limited set of
system APIs that they can use further reducing attack options.
Even so, NSO Group (Pegasus) and Cellebrite still chip away at it. And
plenty of others, too. iPhone is both a very hard target and a very
valuable one.
Though according to a recent data leak, iOS 17.4 and up currently cannot
be cracked by Cellebrite.
--
\m/ (--) \m/
More information about the Discuss
mailing list