Oddbean new post about | logout
sommerfeld | 3 months ago (raw) | root | parent | reply | flag 
 I'm not sure how ACs work. Maybe they don't do it in-process since that's very limited but do it with a separate daemon that monitors OS syscalls?

I'm asking because I've read about many cases of devs who got banned because they used dev tooling (debuggers, profilers, decompilers, wireshark, etc).

AC is literally spyware.
Connor Davis | 3 months ago (raw) | root | parent | reply | flag 
 I think most are in-kernel these days so would be able to monitor things like bpf