[Fed-Talk] Gatekeeper for Mountain Lion
[Fed-Talk] Gatekeeper for Mountain Lion
- Subject: [Fed-Talk] Gatekeeper for Mountain Lion
- From: Todd Heberlein <email@hidden>
- Date: Thu, 16 Feb 2012 09:47:55 -0800
At first blush, Apple's Gatekeeper approach feels exactly right. No solution is probably right for everyone (or maybe anyone), but this feels like a good balance. Instead of worrying about virus definitions, Apple can just revoke certificates for a malware developer and then send Seal Team 6 after the developer (OK, that last part might not be true).
As a developer for security software this kind of sucks (curse you Apple). But as a user, and as someone whose mom has started using a Mac, this feels good.
Gruber, as usual, has some good insights on this. Here are some links:
http://www.apple.com/macosx/mountain-lion/security.html
http://daringfireball.net/2012/02/mountain_lion
Any thoughts? I wonder how this is going to effect Macs on SIPRNet and other isolated networks?
I watch Google's Chrome regularly download new UNIX programs in the background (hidden from you), run the program, which modifies your system, and then deletes all the evidence. I wonder if this will break Chrome? For example, how will UNIX programs be signed?
Todd
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden