I've seen some sketchy crap while pulling apart mac .pkg files to see their prei... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		philsnow on March 29, 2023 \| parent \| context \| favorite \| on: NSA Ghidra software reverse engineering framework I've seen some sketchy crap while pulling apart mac .pkg files to see their preinstall/postinstall scripts. In particular one video conferencing company's installer did some "growth hacky" things a few years ago (I checked a recent one just now and it seems benign).

amatecha on March 29, 2023 [–]

Ah yeah I remember those particular installer shenanigans for sure. Indeed, installers are often granted elevated permissions which is a perfect opportunity to drop in "extra" functionality :-O

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact