Comments (5)
Currently the only way to achieve what you're asking is a BlacklistRegex. https://github.com/google/santa/wiki/Configuration#whitelistregexblacklistregex
Note that there can only be one entry, so that could get really long, and the end user could just move the app to another un-blacklisted-path to run it. I'm not sure but I'd be concerned about webkit breaking if you blacklisted safari…
from santa.
I was looking at BlacklistRegex in the wiki, but from my understanding it is for blacklisting specific folders from running programs not files. So i could block "/Applications" but not "/Applications/Safari.app"
I am attempting to block Safari to prevent our teachers and kids at our school from using Safari instead of Chrome, as Safari has compatibility problems with some google apps and a lot of testing software. From what I tested all other webkit apps such as the Appstore ran fine if I blocked Safari using Santa.
from santa.
Bundle apps like Safari are folders... I don't have great regex resources off the top of my head, but you can use it to do what you're trying to accomplish.
from santa.
Do you still require assistance with this issue? The intended use of Santa may fall outside of your needs, but if you're controlling the patches applied to machines you should be able to maintain a blacklist of hashes. Safari updates with the OS, and that only is every two months or so if historical data is any indication.
from santa.
I guess not. I ended up creating a script to periodically remove and reapply the Line for Safari aver few weeks to work around the problem.
from santa.
Related Issues (20)
- santactl status discrepancy when running as root/non-root HOT 1
- Parquet output HOT 9
- Switch to evaluating the live `SecCodeRef` when authorizing new execs
- Efficient mechanism for rule pruning HOT 4
- santa daemon should have a mechanism to prevent being killed by users with root privileges. HOT 1
- Why is Clean Sync Required Always YES Even When Sync Server Sends NO HOT 9
- Compiler Rule: How to Check? HOT 3
- How to remove santa without having access to terminal or applications folder?
- Preflight `clean_sync` has no effect when no rules are sent. HOT 4
- Document that last rule for a given identifier applies
- Support log upload when file system monitoring denies an operation
- `santactl rule --check` is broken HOT 2
- Bypass via Recovery Mode HOT 3
- `contactsd` seem to be able to bypass santa's silent block on macOS Sonoma 14.1.1 HOT 6
- Add Entitlements to EventUpload in the Sync Protocol
- Unable to set the configuration element enable_transitive_rules using santactl HOT 11
- The configuration key `EnableForkAndExitLogging` is broken
- Clean syncs should only optionally remove transitive rules
- Make santactl status report on the status of enableTransitiveRules even when not using a sync server HOT 1
- Big Sur Style Icon for Santa
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from santa.