LP
Linh Pham
@linh.social
Wait Wait Stats Person and Software Release Engineer. Recently switched from macOS to Linux (I use Fedora, BTW).
stats.wwdt.me | linhpham.org | blog.linh.social
Pronouns: he/him/they/them
Mastodon: linh.social/@qlp
101 followers236 following242 posts
Quote from ESET in that blog post: It remains imperative that kernel access remains an option for use by cybersecurity products to allow continued innovation and the ability to detect and block future cyberthreats.
I do absolutely agree that having fewer things run at kernel-mode, the better. We've seen the absolutely mess that buggy kernel-mode drivers and hooks can cause before the CrowdStrike clusterduck or even anti-cheat software. Having an auditable layer between kernel and user-modes is ++good.
LP
Linh Pham
@linh.social
Wait Wait Stats Person and Software Release Engineer. Recently switched from macOS to Linux (I use Fedora, BTW).
stats.wwdt.me | linhpham.org | blog.linh.social
Pronouns: he/him/they/them
Mastodon: linh.social/@qlp
101 followers236 following242 posts