What he misses is "tamper evidence." In order to do those things I have to actua... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		timewizard on March 10, 2025 \| parent \| context \| favorite \| on: Apple Exclaves What he misses is "tamper evidence." In order to do those things I have to actually steal his laptop. Which would be obvious to him. It also implicates me. If I could just remotely install a driver I don't need to worry about any of that and I can steal remotely and anonymously.

hedora on March 10, 2025 [–]

Can’t you just remotely install a keylogger (e.g. a modified version of zoom)?

timewizard on March 10, 2025 | [–]

If it's running as their user account then they can see it and remove it. The point of the admin account is to prevent this by obfuscation and permission hijack.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact