Re: User-perspective question about code signing Mac apps (non Mac App Store)
Re: User-perspective question about code signing Mac apps (non Mac App Store)
- Subject: Re: User-perspective question about code signing Mac apps (non Mac App Store)
- From: Markus Spoettl <email@hidden>
- Date: Tue, 12 Apr 2011 14:09:52 +0200
On Apr 12, 2011, at 1:46 PM, Chris Suter wrote:
> On Tue, Apr 12, 2011 at 6:27 AM, Eric Wing <email@hidden> wrote:
>
>> If I tamper with the resources in the bundle, the app fails to launch
>> so it appears to be signed.
>
> That won't be because you signed your app.
There's a kill switch you can use when signing the application that causes the app to be terminated when the signature is invalid (see option flags on the codesign man page). However, as you said, it doesn't help much as anyone can remove the signature, tamper with the application and resign it using his own certificate (or not).
Regards
Markus
--
__________________________________________
Markus Spoettl
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Xcode-users mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden