7 posts tagged ‘Gatekeeper’

• Xcode 16.2

  mjtsai, Dec 13, 2024

  Apple (downloads): The Command Line Tools package now supports using the swift test command to build and run package tests written with Swift Testing.[…]Sometimes running parallel Tests on macOS run destinations never finishes.[…]macOS projects that use hardened runtime but no sandboxing may run into timeout errors when attempting to preview if the project is complex […]

  ProgrammingApple IntelligenceGatekeeperMacmacOS 15 SequoiaObjective-CSwift ConcurrencySwift Programming LanguageSwiftUITestingXcode

• SpamSieve 3.1

  mjtsai, Nov 20, 2024

  SpamSieve 3.1 improves the accuracy of my Mac e-mail spam filter, amongst many other enhancements. Some interesting issues were: NSHelpManager seems to be broken under Sequoia in that sometimes you have to click a help link multiple times for it to open the right page—until then it just opens the main help book page (FB15763353). […]

  TechnologyApple HelpApple MailCore DataGatekeeperMacmacOS 15 SequoiaProgrammingSpamSieve

• TCC and Gatekeeper Bypasses

  mjtsai, Oct 21, 2024

  Wojciech Reguła (September 2021, tweet): I was looking for code injection opportunities that may allow reaching TCC bypasses. My simple shell script discovered a potential victim - /System/Library/CoreServices/Applications/Directory Utility.app. It had (and has) the following private TCC entitlement[…] This entitlement allows the Directory Utility to modify the user’s records stored in the /var/db/dslocal/nodes directory. […] […]

  TechnologyApple Security BountyBugExploitExtended AttributesGatekeeperLaunch ServicesMacmacOS 12 MontereymacOS 14 SonomamacOS 15 SequoiaSafariSecuritySQLiteTransparency Consent and Control (TCC)VirtualizationZIP Archive

• Resolving Trusted Execution Problems

  mjtsai, Jan 16, 2024

  Quinn: If you’re developing software for macOS your goal is to avoid trusted execution entanglements. You want users to install and use your product without taking any special steps. If, for example, you ship an app that’s blocked by Gatekeeper, you’re likely to lose a lot of customers, and your users’ hard-won trust.[…]If you launch […]

  TechnologyGatekeeperMacmacOS 14 SonomaProgrammingSecurity

• A Picture Is Worth a Thousand Permissions Requests

  mjtsai, Nov 13, 2023

  Jason Snell (Reddit, Hacker News): Due to an extremely weird series of troubleshooting maneuvers, I recently found myself having to set my Mac up from scratch without migrating any of my preferences for the first time in longer than I’d like to admit.[…]More than anything else, though, the experience reminded me that Apple has a […]

  TechnologyGatekeeperMacmacOS 14 SonomaPrivacySecurity

• Code Signing Woes

  mjtsai, Oct 30, 2023

  Dirk Lemstra (via Hacker News, tweet): Today [ImageMagick’s Windows] code signing certificate will expire. For many years LeaderSSL sponsored us with a code singing certificate but they are no longer able to do so. Since June of 2023 the CA/B Forum requires that OV code signing private keys be stored on a FIPS 140-2 Level […]

  TechnologyBusinessCode SigningGatekeeperGitHub ActionsImageMagickMacmacOS 14 SonomaMicrosoft AzureOpen-source SoftwareProgrammingWindowsWindows 11

• The Care and Feeding of Developer ID

  mjtsai, Oct 10, 2023

  Quinn: I regularly see folks run into problems with their Developer ID signing identities. Historically I pointed them to my posts on this thread, but I’ve decided to collect these ideas together in one place.[…]This post focuses on traditional signing identities, where you manage the private key. Xcode Cloud introduced cloud signing, where signing identities […]

  ProgrammingCode SigningGatekeeperKeychainMacmacOS 14 Sonoma