> Breaching the daemon only allows for the attacker to get access to the login
Yes, but potentially any login. See the problem? If you compromise the gatekeeper, you are now the keymaster. Or whatever :)
> Breaching the daemon only allows for the attacker to get access to the login
Yes, but potentially any login. See the problem? If you compromise the gatekeeper, you are now the keymaster. Or whatever :)
I'll admit it is still problematic. But at least there is only 1 gatekeeper instead of 2.
How is that better?