hoakley June 15, 2022 Macs, Technology, Updates

Maintaining the integrity of important files

All of us have important files we don’t want to lose. While backing them up in depth should ensure that no matter what happens, we can always find a copy, how can we tell whether it’s intact, or has been damaged or corrupted?

Ideally, we could use a file system that includes integrity checks, such as ZFS or Btrfs, but those are only readily available on external systems such as NAS, and not native to macOS. This article looks at an alternative, using my free family of utilities, including Dintch, which has just been updated.

Checksums and hashes

Most techniques of checking and maintaining file integrity start with making checksums, hashes or ‘digests’ of each file to be protected. When these are made by the file system, they’re effortless for the user, but currently that isn’t an option with either HFS+ or APFS. For macOS native file systems, they’re an add-on for the user.

There’s a wide choice of different checksums and hashes which can be used for this. Those that are quickest and simplest to calculate are normally most prone to collisions, in which two different files have the same checksum. Although not normally a problem, were a file to be maliciously corrupted that could result in undetected substitution. Dintch and its relatives use the SHA-256 hash, which is considered robust enough for cryptography, and is extensively used and supported by macOS.

Associating the hash with the file

Some integrity-checking systems store hashes of the files they’re protecting in a separate file inside each folder. If those files are always going to remain together in the same location, that’s not a bad choice, but it requires that every time you move files around between folders, you have to regenerate their hashes for the hash file collection in their new folder. It’s then easy for files to become separated from their hashes. There’s also the frightening possibility that the file containing all the hashes itself becomes damaged.

Thankfully, macOS has a solution for this in extended attributes (xattrs), which can remain associated with a file no matter where it’s moved to, provided that it remains on a file system like HFS+ and APFS which supports xattrs. There is a slight twist to this, in that macOS does sometimes strip certain xattrs; iCloud has been known for this, for instance.

To prevent that from happening, macOS supports a system of flags that can be appended to the names of xattrs to make them persist. That’s the technique used by Dintch and its relatives: so long as each tagged file is only moved to and from volumes which support xattrs and their flags, the hash moves with that file wherever it goes.

Dintch and its relatives use a custom xattr named co.eclecticlight.dintch.hash, which is given the special flag #S to make it persist in iCloud and when copied between volumes and disks.

Compression and archiving

If you intend compressing and archiving files that have been tagged with their hashes using this method, you need to be sure that your compressor and archiver also preserves xattrs. All good Mac utilities, including my favourite Keka, offer this as an option, and it’s mandatory in my own compression tool Cormorant.

If you want to perform belt-and-braces integrity checking, tag the contents of your archives before compressing them, then tag the compressed file as well. Dintch’s hashes take almost no space, and little time is required to check them.

Timestamps

Although not normally included in integrity-checking systems, it’s sometimes important to know when a file’s integrity was checked by creating and saving its hash. Dintch and its relatives support that option, using another xattr co.eclecticlight.dintch.time, which contains the time of creation of the hash in UTF-8 text, making it readily accessible.

Tools

If you’re going to use any system of integrity checking, you need a range of tools to ensure you don’t end up wasting time hammering in a screw. The Dintch family consists of three tools to cover almost every possible use:

Dintch, designed to work with folders or directories, with a GUI;
Fintch, a drag-and-drop version designed for individual files and small collections;
cintch, a command tool you can invoke in shell scripts, AppleScripts, and even Shortcuts if you wish.

They’re all available from their Product Page, and are compatible with all versions of macOS from El Capitan to Ventura, and with HFS+ and APFS file systems. Note that hashes are consistent across all those too: you can tag files in HFS+ on El Capitan and their tags will still be valid in APFS on your M1 Mac Studio Ultra.

dintchcheck14

This also marks the release of a new version of Dintch. Because this is intended to be used for larger tagging and checking tasks, it can take some time to complete. Version 1.4 now lets you set the speed of its tasks, with three presets for the Quality of Service and number of threads.

These have less effect on Intel Macs, but still work there: I checked nearly 100,000 largely untagged files at just over 500 per second at Dintch’s 🏎 ‘red racing car’ setting, and at just over 350 per second at the 🐢 ‘green turtle’ setting. M1 Macs are significantly faster, with a greater difference between the two extreme settings, with over 1,500 files/second on the P cores down to 400 per second running only on the E cores. This new control gives you the choice when running longer tasks of putting them into the background on the E cores where they won’t interrupt your work.

Dintch version 1.4 is available now from here: ditch14
from Downloads above, from its Product Page, and via its auto-update mechanism.

Finally, I’ve been conducting a long-term experiment in iCloud Drive, where I have 97 files that I tagged over two years ago, at 1632 on 11 April 2020 according to their timestamps. Every so often I download and check their hashes. Not one of them has changed yet.

49Comments

Add yours

1

Chris Hand on June 15, 2022 at 8:00 am

Well kudos to you for your continued polymathic contributions!
I’m a long time mac techie (SW of UK) – with nothing like the depth of knowledge that you display!- but I have plenty of street level experience & I find your contributions immensely valuable.
Particularly relevant (in my view) is data integrity in macOS:
I have been been concerned that Apple has not seemed to prioritise data integrity in the development of APFS- I was kinda hoping that they’d adopt ZFS or a variant on this account, but they seem to me to have obsessed with speed and probably other functional parameters. To me this is not showing respect to the most valuable aspect of their end user’s great ie their precious uniquely created user data. I’m not talking email or browsing data but for example 3 days creating a new track in Logic or a complex video edit or even a long text file which is irreplaceable. It’s fine having a super duper new Apple box costing thousands which can in microseconds process the data equivalent of the entire knowledge of the ancient world to the power of 64…but that poem you write down at 3.30am after your mother’s death is of inestimably greater value.
I’m not intending to be hyperbolic- I’ve witnessed people’s family photos being lost & sometimes precious writings …
& Data recovery is not always viable or possible. People don’t always backup & don’t always cloud sync. I try to educate as I go along, but accidents still happen. Big powerpoints or dtp files go corrupt…blah blah.
So what you’re writing today is very welcome, and your circumspect assessment belies seasoned expertise. ICloud is not by any means perfect & Dintch’s general function is very welcome & it’s ability to preserve hashes across the crazy iCloud file optimisation system is very welcome. I will try implementing it.
I just wish this process was integrated under the surface in standard macOS.
Perhaps you will receive the Pyrrhic honour of having Apple’s flattering adoption of Dintch’s functionality into their filesystem at some future point. They do have a history of destroying small developers’ priducts over the years. So that’s a miserable point, but I have to say that I don’t find APFS at all reliable at this point, even compared with hfs+.
I understand that it’s a major engineering feat with modern criteria- understandable & necessary. BUT the data integrity & file system integrity issues are very important & too often I’m routinely finding irreparable APFS filesystem corruption. Hopefully it will mature fully over time & maybe there will actually be the APFS equivalent of the old silver bullet- Diswarrior- but I’m not expecting that any time soon. I’m not aware of any better APFS filesystem repair tool than Disk Utility & it’s not adequate. I just hope the APFS filesystem is not inherently irreparable. Tant pis.

LikeLiked by 1 person
- 2
  
  hoakley on June 15, 2022 at 8:16 am
  
  Thank you.
  I’m amazed to hear that you’re finding a lot of APFS corruption. I’ve been using it extensively since the pre-release in Sierra, and never really encountered any problems with corruption. Compared with HFS+, even with journalling, problems are exceptionally rare in my experience.
  I think Apple’s reasoning is that it’s better to design a file system that protects itself from damage, using copy-on-write etc., and not to impose integrity-checking overhead on every file. I wish they’d build a file system extension scheme in to allow others to plug in integrity protection and other features which could then be options for the user.
  Howard.
  
  LikeLike
  - 3
    
    Chris Hand on June 15, 2022 at 11:14 pm
    
    Hiya- well I deal with a lot of macs, several every week in ordinary end user situations mainly. Your comment about never really coming across it has made me think …I’m trying to figure out reasons for my experiences… eg
    *often not onboard original Apple ssds (so often sata ssds) – ssds are not all that reliable/ (I tend to use trimforce & observe garbage collection config) /
    *earlier iterations of APFS/
    *filevault/ – a corrupted filevault volume is a nightmare & probably irrecoverable – recently I had one where the encryption hashes were on a corrupted file segment & it became impossible to login to user accounts & the Internet recovery server couldn’t reset the passwords…
    *many time fs root tree invalid, many times ‘filesystem could not be completely verified” ie its partly corrupt & in unknown measure…
    I often use nvme drives of decent quality – maybe they are more reliable & its potentially a hardware related issue with sata ssds, but I’m not convinced …
    many times with earlier iterations of APFS under eg high sierra the filesytem develops irrecoverable corruption after a couple of years.
    eg a newish imac on Monerey – continuously developing weird disappearing folders / weird minor permissions issues- maybe Monterey bugs but I suspect unresolved fs issues.
    
    & I do understand & agree with what you say about Apple opting for a reliable filesystem as a primary approach to data integrity which makes sense, but I will keep my eyes peeled and try to differentiate the causes of what I see.
    
    LikeLiked by 1 person
    - 4
      
      hoakley on June 16, 2022 at 12:38 pm
      
      Thank you.
      I wouldn’t use APFS in High Sierra now if you paid me. Yes, of course it had bugs, and some were pretty serious. So I’m unsurprised that you’ve experienced that. Keeping up to date with APFS is essential.
      I’m amazed that you think that SSDs “are not all that reliable”. Which manufacturers and models would those be? I’ve a total of over 14 TB online here, the majority on SATA, and have had for over three years now. Touch wood, I’ve only had one error in the whole of that, and that I still haven’t had time to examine properly yet.
      Disk Utility here only returns warnings about being unable to completely verify as the result of its bugs in being unable to eject some volumes, particularly APFS TM backups. Since Sierra, I’ve never encountered an fs root tree invalid, and I use a lot of external SSDs in addition to my 14 TB, and have just been assessing six 2 TB hard disks as well.
      Oh – and each summer I run the developer betas on one of my Macs too, yet haven’t come across these problems there either. But then I have to run the current macOS on all my Macs.
      Howard.
      
      LikeLike
  - 5
    
    Chris Hand on June 21, 2022 at 7:45 pm
    
    hiya – well certainly the High Sierra iteration of APFS was vey green so I agree it’s not recommended hfs+ can still be employed) – but I’m certainly observing both corruption & ssd failures over the past two-three years..I sometimes do sometimes use later versions of disk utility to repair older version file systems which can help. My own conclusion is that ssds are over-rated for reliability & as their failure pattern is much more final & agressive then backups are totally essential (lol). Obviously ssds vary in quality but the competitiveness of the market is meaning that previously rock solid products from eg Crucial have cheaper product lines which are definitely more prone to failure – BX line not so good MX better …this isnt just from me but from other colleagues. & quad level nands involve more tech ( several voltage levels) to increase storage density at a lower price point – so it remains to be seen how these fare over the life cycle. Still its amazing how cheap ssds are now- the whole manufacturing world has shifted.
    
    LikeLiked by 1 person
6

Enrico on June 15, 2022 at 8:28 am

It seems you have a typo in the filename of the new version of dintch. It’s ditch14 instead of dinch14.
Very interesting article as usual!

LikeLiked by 1 person
- 7
  
  hoakley on June 15, 2022 at 8:29 am
  
  Thank you – yes, it’s just in the Zip archive, not in the app!
  Howard
  
  LikeLike
8

Duncan on June 15, 2022 at 12:39 pm

Thank you, enormously, for your continued work in this area. (I feel like some of this is speaking directly to my previous comments here.) I’ll be looking into the latest versions of your utilities when I have time.

One concern I have for any user-maintained integrity-checking scheme is knowing the status of the file’s checksums: 1) Has one been generated and associated with the file (or group of files), and 2) When has it last been checked? I personally manage the existence/lack of a checksum through the Finder’s Tag feature – after I generate the checksum I tag the file ‘Blue’, for example. Then, after I verify the file at some later date I’ll tag it ‘Green’.

Setting the initial Blue tag is a one-time task (although let’s set aside the separate problem of what happens when the file is changed intentionally by the user), however assigning the Green tag is only good for the immediate purpose, with no indication of *when* a file was last checked. So while the Blue tag is good for the life of any unchanged file, the Green tag has a shelf life.

I have no idea how much effort is involved to implement this feature request, but would it be possible for your utilities to at least assign a user-defined tag (such as my ad-hoc Blue tag) upon generation and attachment of the checksum? This would be most useful for archived (unchanged) files that one stores but has no intention of modifying later.

LikeLiked by 1 person
- 9
  
  hoakley on June 15, 2022 at 7:09 pm
  
  Thank you. It’s not hard, and I’d happily do it. But I just want to think this through carefully, because Finder tags aren’t as well-preserved as Dintch’s hashes and timestamps.
  I’ll get back to you.
  Howard.
  
  LikeLike
  - 10
    
    Duncan on June 15, 2022 at 9:54 pm
    
    Thank you, I know that the Finder leaves a lot of unfinished business or abandoned features in its wake (such as the Get Info comments in the past), but the colored tags are the best I can come up with for a quick visual indication of the stored checksum status.
    
    What would be great is a user setting in D/F/cintch to apply an existing tag to the file after it has been hashed. I personally only use the default tags (as labeled by their color) and haven’t created new ones because I don’t want to have that effort lost down the road.
    
    For me, this would be most useful for my old archived files that I have no intention of changing, so once hashed they should stay that way. The Finder tag would simply indicate that this operation has been done.
    
    Frosting on the cake would be the ability to set an additional tag (such as Green, in my example) upon verifying that a previously-hashed file is correct. It would then be the user’s responsibility to acknowledge that the ‘verified’ tag could become obsolete over time, and possible delete them all after a certain operation is complete or a certain time period has passed.
    
    (Ugh, I really wish that none of this were necessary, but such are Apple’s file-system design priorities…)
    
    LikeLiked by 1 person
11

Anonymous on June 15, 2022 at 8:50 pm

Thank you for sharing. Similar implementation to ambv/bitrot. I use that tool to scan my documents on a Linux server. https://github.com/ambv/bitrot

LikeLiked by 1 person
- 12
  
  hoakley on June 15, 2022 at 9:50 pm
  
  Thank you.
  I think these are quite different, in using SHA-256 and saving the hash to each file’s metadata, rather than using a database, for the reasons I have given above. The snag with a server-based system like that is that the moment you copy a protected file off that server you have lost all monitoring of its integrity. That’s why the hash needs to move with the file.
  Howard.
  
  LikeLike
13

Christian on June 15, 2022 at 11:03 pm

Hi Howard!
Thanks as always! 🙂
Is there any technical reason why Dintch is not drag-and-drop too? Perhaps it would be harder for you, but from a user point of view, I don’t really see the need for 2 separate apps.
If I understand well, Fintch is rather meant for a small number of files, right?

LikeLiked by 1 person
- 14
  
  hoakley on June 16, 2022 at 11:46 am
  
  Thank you.
  There’s no technical reason at all, but it results from the users that the two apps were intended for.
  Fintch does handle substantial folders perfectly happily. It’s intended primarily for those who just want to tag a few of their more important files, and does so simply, without complications such as timestamps. It’s lightweight and simple to use.
  Dintch is intended for those who might want to tag large and complex folders, and who want added sophistications such as timestamps, and more controls. Some of those tasks could well take tens of minutes or hours, such as tagging or checking the whole of ~/Documents. At the time these were developed, drag and drop wasn’t a feature that users wanted, so it runs as a straight app.
  So few users needed to use both apps – essentially their tagging policy determined which was the more suitable for their purpose.
  Howard.
  
  LikeLike
  - 15
    
    Christian on June 16, 2022 at 12:41 pm
    
    Thanks for this clarification. 🙂
    
    LikeLiked by 1 person
  - 16
    
    Christian on June 21, 2022 at 12:31 pm
    
    This quick note to tell you how pleased I am after using Fintch for moving huge folders!
    For decades, I used to check the copied folder with Roxio Toast comparison feature (never found any other easy and satisfying method…), now I tag the original, copy, check tags, delete the original. Great workflow! I guess it spares some disk churning too.
    Thanks again! 🙂
    
    LikeLiked by 1 person
    - 17
      
      hoakley on June 21, 2022 at 1:33 pm
      
      Thank you.
      Howard.
      
      LikeLike
18

kapitainsky on June 17, 2022 at 10:19 am

Brilliant tools! Now I have had some time to test them and I love it. Very clever solution.

What I am missing big time is ability to tag only new files. Let me explain.

Let’s say I have massive archive on external disk – I run Dintch and all files have hash tags after. But now I add some new content to this archive – multiple files in multiple locations. Maybe also I edit some files. I can run retag but it will read all archive content again – I have mechanical disk with many TB of data….

As you also add timestamp tag I would love to have option to do “smart retag” – create hashes for any file without them, for files already with hashes update hash only if file modification time is newer than hash timestamp.

This way I could keep my archive hashes updated and leave full archive read for only time when I need to validate all data.

LikeLiked by 1 person
- 19
  
  kapitainsky on June 17, 2022 at 10:33 am
  
  other nice to have thing would be some progress indicator – how many files processed and tagged so far
  
  LikeLiked by 1 person
  - 20
    
    hoakley on June 17, 2022 at 9:49 pm
    
    Thank you.
    Yes, I have thought about that, but Dintch is designed to minimise the time taken to tag. In order to use a definite progress indicator, you first have to work out what 100% progress is, so you can show the bar at various percentages. As that 100% is largely determined by total file size, that would require traversing the whole folder to be tagged and totalling file size before starting on the task. For sections of the file system with more 100,000 quite large files, that in itself would take some time before Dintch could start on its work. Is a finite progress indicator really worth that overhead? I felt not, myself.
    Howard.
    
    LikeLike
    - 21
      
      kapitainsky on June 18, 2022 at 6:07 am
      
      Yes it is only suggestion. I tend to add progress indicators everywhere. In case on Dintch I would at least add progress based on number of files e.g. “78 out of 345 files tagged”. Time ETA is too much unnecessary work to implement.
      
      LikeLiked by 1 person
    - 22
      
      hoakley on June 18, 2022 at 6:12 am
      
      The time to tag a file is heavily dependent on the size of file. Tagging a 4 KB file is essentially instant, while tagging a 400 GB file is a great deal longer! Working on hierarchies with a wide range of file sizes would result in highly non-linear progress, for all the overhead required to calculate the size of the task before starting it.
      We had hoped that APFS would bring speed to this by maintaining directory info like total number and size of files, but I still don’t see that being available, sadly.
      Howard.
      
      LikeLike
- 23
  
  kapitainsky on June 17, 2022 at 11:11 am
  
  I think there are two parts here:
  
  1 – bare minimum and something I would consider as must have – tag only files without tag. Updating big archives would become easy. Add new content – and in one step add missing tags without re-reading all archive.
  
  2 – nice addition would be to use co.eclecticlight.dintch.time attribute and also update hashes for edited files
  
  LikeLiked by 1 person
  - 24
    
    hoakley on June 17, 2022 at 9:58 pm
    
    1. Why aren’t you tagging the files before copying them into the big archive? That’s the whole point of attaching to the tag to the file, so it moves with it when it’s added, and checks that moving the file hasn’t damaged it.
    2. How does that avoid updating the hash on a file that has become damaged without checking for integrity?
    Howard.
    
    LikeLike
- 25
  
  hoakley on June 17, 2022 at 9:44 pm
  
  Thank you.
  I’m puzzled why you want to add tags to your files after you have put them in your archive. Surely you want to add the tag at the earliest opportunity, before copying it anywhere. That way the tag verifies the integrity through the copy to archive, and thereafter.
  Concerning retagging files if their file modification time is newer than the has datestamp, that’s a recipe for disaster, as you don’t know why the file has been modified – that’s uncontrolled, so you could be replacing the only evidence that a file has been corrupted, and adding a tag claiming that damaged file is intact.
  That seems the exact opposite of maintaining integrity!
  Howard.
  
  LikeLike
  - 26
    
    kapitainsky on June 18, 2022 at 5:57 am
    
    new content – it is quite normal e.g. I add new content to my archive from non macOS machines – automatically using rsync. There are multiple folders in archive e.g. sourcecode, pictures, configs etc. New files can be added all over the place. The same from my laptop – let’s say I work on some program. Overnight my work folder is automatically added to my archive (again rsync). Overall I tend to automate everything – I would like to have my archive disk content tagged using cintch – but this disk contains many TB of data…. full retag takes many hours..
    
    And even more important reason not to run retag on everything is that I do not want to update tags on already tagged content. It does not make any sense in case of archive – I want any file to be tagged only once. If file gets corrupted and I retag it than I will never be able to detect its corruption.
    
    modification time – yes it is not straightforward – probably asking for too much:)
    
    LikeLiked by 1 person
    - 27
      
      hoakley on June 18, 2022 at 6:08 am
      
      In that case, why don’t you tag as part of the rsync copying, using cintch?
      I note a potential vulnerability in your integrity maintenance system, if you don’t establish integrity before rsync. What’s to say that corruption hasn’t occurred during that copying? There’s nothing more useless than tagging an already-corrupted file!
      Howard.
      
      LikeLike
    - 28
      
      kapitainsky on June 18, 2022 at 6:17 am
      
      I run rsync in client server mode and source and destination file hashes are checked during transfer. It means that when file lands in archive I know that it is the same file which was sent. Now it is where cintch can play its part protectict this file long term archive storage.
      
      LikeLiked by 1 person
29

kapitainsky on June 17, 2022 at 10:29 am

and if “smart retag” would be part of cintch it would be perfect – this way I could automate all my data flow process myself

LikeLiked by 1 person
30

kapitainsky on June 17, 2022 at 11:52 am

One more question – are your tools released under any specific licence? I could not find anything on your website. Is their use restricted in any way (e.g. commercial)?

LikeLiked by 1 person
- 31
  
  hoakley on June 17, 2022 at 11:57 am
  
  All my software here is completely free to use. It isn’t open source, although I am happy to release source on request. None of it is really that complex!
  It is copyright, and while you are welcome to pass individual copies free, and to distribute it within any company or organisation, commercial distribution for money should be agreed with me first.
  Is that fair?
  Howard
  
  LikeLike
  - 32
    
    kapitainsky on June 17, 2022 at 12:12 pm
    
    clear – thank you
    
    LikeLiked by 1 person
33

kapitainsky on June 17, 2022 at 12:11 pm

in Dintch Buffer field and KB/MB drop down does not scale – meaning Buffer is empty and KB/MB shows “…” on my screen.

LikeLiked by 1 person
- 34
  
  hoakley on June 17, 2022 at 10:01 pm
  
  Thank you. As the text in those shouldn’t scale, I don’t understand how their size is changing. Could you explain what is going on, as I can’t repeat that here.
  Howard.
  
  LikeLike
  - 35
    
    kapitainsky on June 18, 2022 at 5:44 am
    
    when I specify 2048 MB buffer:
    
    LikeLiked by 1 person
    - 36
      
      hoakley on June 18, 2022 at 6:04 am
      
      Thank you.
      If you care to look in the documentation, there’s a whole page about buffer size, where it states clearly:
      “You can set the buffer size used by Dintch in the box labelled Buffer and the popup menu next to it. The value in the box should be from 1 to 1024, and the menu can make that KB or MB as you wish. Together, these let you set the buffer size to anything from 1 KB to 1024 MB (or 1 GB).”
      Last time I checked, 2048 was larger than 1024.
      Howard.
      
      LikeLike
    - 37
      
      kapitainsky on June 18, 2022 at 6:13 am
      
      1. For 1024 value KB/MB field also shows “…” for me
      
      2. I used many GB buffers in cintch and it accepts it without complaining so I assumed that all your tools do the same. If Dintch only accepts 1024 MB max – than it is ok.
      
      LikeLiked by 1 person
    - 38
      
      hoakley on June 18, 2022 at 6:17 am
      
      1 is really strange, as here I simply can’t reproduce that, and there’s still space to the right of the digits. At the next revision, I’ll widen that box for you.
      2 please read the docs. I spend almost as much time documenting my apps as I do coding them.
      Howard.
      
      LikeLike
    - 39
      
      kapitainsky on June 18, 2022 at 6:21 am
      
      I think it depends on screen resolution and scaling. Would indicate the way you display these two fields is not screen independed. It works for your settings – I have different screen settings and it fails. It is of course only small cosmetic thing.
      
      LikeLiked by 1 person
    - 40
      
      hoakley on June 18, 2022 at 5:20 pm
      
      No, it doesn’t. As I use AppKit for all the GUI elements, that’s performed in vector graphics. However, in this case it appears I may have set the popup menu just a tad short, and at times it does show the … character when MB is selected, although when it has popped up, both entries remain clear. I will widen that menu at the next revision.
      Howard.
      
      LikeLike
41

kapitainsky on June 18, 2022 at 11:57 am

One more comment – co.eclecticlight.dintch.time is only added when I use Dintch – IMHO it would be nicer if it is consistent across all your tools including Fitch and cintch. Or at least optional for cintch – this is one people like me will use the most for automation.

My work in progress in cintch wrapper – it would run over my Important Documents Folders every time before Time Machine runs (I run it once a night only so not big deal) – add checksum tags for all new files and update it for files I edited – the latter is where I need timestamp where hash was created.

LikeLiked by 1 person
- 42
  
  kapitainsky on June 18, 2022 at 12:06 pm
  
  and related to this is question – Am I right to assume that co.eclecticlight.dintch.time is in UTC?
  
  LikeLiked by 1 person
  - 43
    
    hoakley on June 18, 2022 at 5:25 pm
    
    Yes, the time is given in UTC, in POSIX format as documented.
    Howard.
    
    LikeLike
44

kentzo2010 on October 8, 2022 at 3:05 am

Noticed in Fintch’s README that it self-checks its own signature at startup. What’s the purpose of this?

LikeLiked by 1 person
- 45
  
  hoakley on October 8, 2022 at 9:21 am
  
  To check the app’s integrity, to ensure that it hasn’t been damaged or changed by malware in any way.
  Howard.
  
  LikeLike
  - 46
    
    kentzo2010 on October 9, 2022 at 5:20 am
    
    If malware targets your binary, what’d stop it from patching the builtin signature checking code as well?
    
    LikeLiked by 1 person
    - 47
      
      hoakley on October 9, 2022 at 7:41 am
      
      Nothing in the app’s own signature check, except that then breaks its notarization, and macOS will refuse to load it.
      And re-signing a changed app is a non-trivial task.
      In security, no single measure is perfect defence, but part of a series of layers. If you have no layers at all, then you have no defence. The more layers you have, the harder it becomes for an attack to succeed.
      Howard.
      
      LikeLike
    - 48
      
      kentzo2010 on October 9, 2022 at 8:28 am
      
      I haven’t seen this particular security measure (offline self signature check) on macOS in a while. Asking purely out of curiosity to hear a good argument this on top of what macOS already does. Good reasoning is and educating read.
      
      LikeLiked by 1 person
    - 49
      
      hoakley on October 9, 2022 at 2:12 pm
      
      Thank you. Most of my apps do the same. The cost during launch is extremely small. However, as Ventura will be checking signatures of notarized apps on every launch, it might not be worthwhile in the future. I’ll be looking to see how that works out.
      Howard.
      
      LikeLike