On Mar 2, 2008, at 5:39 PM, Rainer Brockerhoff wrote:
Right. Of course, a more-savvy user can run "codesign -d -vvvv" on
the app to check, as I said. But there really should be an easier
way... maybe a "show certificate" button in the Finder's Get Info.
I'll file a bug for that.
The implementation of code signing Leopard gave birth to was
stillborn, and aside from a few fringe cases, going through all the
trouble required to use it typically has very little effect on
anything. I wouldn't expect to see any kind of meaningful certificate
validation being done for a very long time, if ever, so I'd probably
spend some time evaluating whether or not my application was really
attractive enough a target to the gangs of roving hackers you seem to
be afraid of before going hog wild here. Jens' suggestion makes the
most sense to me.
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Apple-cdsa mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/apple-cdsa/email@hidden
