What happens when you open a quarantined app?

Stepping through the key stages of opening an app in High Sierra. First, a ‘regular’ open, then with the quarantine flag, showing Gatekeeper checks and translocation.

A bug in signature-checking weakens most anti-malware tools

One of the basic checks which all malware protection should make is whether apps and other code have […]

What to do when a disk image won’t mount

You have double-clicked on a disk image, and macOS refuses. Here is what you can do to get that image to mount, even when it’s damaged.

macOS code signing and Gatekeeper ignore extended attributes

Gatekeeper doesn’t seem interested in extended attributes attached to the contents of signed apps – the signature remains valid. Could this be exploited?

Have you had Gatekeeper problems with my apps?

Test versions of LockRattler and T2M2 which shouldn’t have any problems getting out of Gatekeeper’s quarantine.

Xcode 8.3: better in parts, more confusing in others

Does Xcode 8.3 deal with the many problems in 8.2.1? Is Swift 3.1 much better than 3.0?

Making an Installer package the easier way

Another epic journey, this time to make an Installer package for my Blowhole command tool.

LockRattler 3, LogLogger 5d, and signature silliness

Two apps from the same developer, both reported as being validly signed. But Gatekeeper claims one is from an “unidentified developer”.

More fun scripting with Swift and Xcode: the signature shuffle

Another ‘scripting’ exercise in Swift starts with time wasted sorting out signing. But it does get better after that.

Is crapware now the price of blocking tracking?

Are advertisers now deliberately delivering unwanted crapware to those using ad and tracker blockers?