Hey Is Michael Lynn here on Slack This may be what h

Question

Hey < thor> Is Michael Lynn here on Slack This may be what he was talking about during the last office hours

thor · Answer

Yeah < frogor>

frogor · Answer

wave

frogor · Answer

Hmmm The only thing in that query that osquery isn t raw accessing var db dslocal record files is it

frogor · Answer

cause that is a no no now

frogor · Answer

too bad the traceback doesn t have the path in question

alessandrogario · Answer

I don t know if this is what you were looking for hope I didn t have Nick highlight you for nothing smile

frogor · Answer

That s exactly the kind of thing

frogor · Answer

I spun up another b10 machine today

frogor · Answer

I ll try the same query

groob · Answer

< obelisk> is tracking Mojave issues here

groob · Answer

on b10 I dont get a crash I just get no results

groob · Answer

maybe I am missing something in the query

groob · Answer

eh i even get results

groob · Answer

now that I have an ssh key

groob · Answer

i can see that < spookerlabs> has this issue on 10 13 so my guess it s another problem

sharvil · Answer

Maybe boost fs issue similar to this one <https github com facebook osquery pull 5208> I know that s a windows issue but maybe there is an unhandled boost exception here too

sharvil · Answer

And maybe relatedly which < zwass> has encountered before