nostromo – WindowsTechs.com

How do I start inspecting, in a basic way, what a socket is or was doing?

Posted on April 2, 2024 by nostromo

Exploring a plist related with a flash pop-up when booting, I found this folders:
launchctl print gui/$(id -u)/com.apple.sharingd
…
path = /System/Library/LaunchAgents/com.apple.sharingd.plist
state = running

program = /usr… Continue reading How do I start inspecting, in a basic way, what a socket is or was doing?→

Is this instantaneous disappearing firewall window pop-up query about process mediasharingd a security issue? Possible rootkit attempt?

Posted on October 24, 2023 by nostromo

Is this a security issue to be really concerned about? A rootkit?
Query window pops out and instantly disappears ("as if it was clicked in", but that’s not possible, because it’s in a flash) on Desktop after booting asking for al… Continue reading Is this instantaneous disappearing firewall window pop-up query about process mediasharingd a security issue? Possible rootkit attempt?→

Is there a cli command to dump the ACL associated to a file (in a MacOS context)? [migrated]

Posted on May 21, 2023 by nostromo

I would like to know if it is possible, and if it is, how can be seen the ACL (Access Control List) associated to a file in a MacOS context, using command line (not using the GUI "File Information" tab, I mean).

Continue reading Is there a cli command to dump the ACL associated to a file (in a MacOS context)? [migrated]→