santa
santa copied to clipboard
google
A binary authorization and monitoring system for macOS
Hello, I'm attempting to use Santa in lockdown mode with golang. * `santa` version: `2021.5` * `go` version: `1.16.5 darwin/amd64` ## Problem Description I've marked `go`, and the go tools...
I clicked that button by mistake, and now it seems that there's no way to launch the application in question other than waiting 24 hours for the timer to expire.
Currently the only bulk method to dump the current rules is by reading the database directly. If would be useful to have an option in `santactl` to dump all of...
When managing rules via local configuration management, we currently must parse the output of `santactl rule --check`. Whilst this is currently only one line, it would be useful to have...
Hi, I'm having trouble with transitive rules again, everything was working ok until the last Catalina update, 10.15.4. The problem: - I added compilation rules for codesign and ld, these...
Hello, I am exploring the FCM feature in Santa. I have a few questions: 1. As per Santa docs, the `fcm_token` should be pushed from the sync server. As per...
This is an enhancement request. Do you think it would be possible to support pkg file with santactl fileinfo? Currently this command can not parse signature of pkg file. Therefore,...
* The "santad / santactl" "privileged / unprivileged" dance. * The filemod prefix filter. * Check the rest of the docs for accuracy.
Do you think it would be possible to add the ability for Santa to block a process based on its parent? An example use-case would be blocking bash from starting...
Would you see any advantage in only allowing executable owned (user and group) by root when the santad executable is not connected to santa-driver?
