A long evening with iOS and macOS Sandbox (2018)

4 points by niklaskorz

Using a web archive link because the original blog’s stylesheet seems to recently have broken

niklaskorz

I was recently digging into Tvix, a more modular re-implementation of Nix in Rust, and saw that it does not yet have a builder backend for macOS. To understand the extent and workings of sandboxing mechanisms available to macOS processes, I searched for informative articles and came about this gem.

skip

Mark Rowe’s blog may be of interest. He gives a general description of macOS’s sandboxing mechanisms in “Sandboxing on macOS”.

The goal is to help developers for non-Mac platforms understand what sandboxing entails on the Mac, and to provide macOS developers with a deeper understanding of how sandboxing works under the hood.
- niklaskorz
  
  That’s a great reference, thanks a lot for sharing