Stack Overflow
Stack Overflow

Questions tagged [osx-gatekeeper]

Gatekeeper is a new feature in OS X Mountain Lion that helps protect users from downloading and installing malicious software. Signing your applications, plug-ins, and installer packages with a Developer ID certificate lets Gatekeeper verify that they are not known malware and have not been tampered with.

Gatekeeper makes it safer to download apps by protecting you from inadvertently installing malicious software on your Mac. The safest place to download apps for your Mac is the Mac App Store. Apple reviews each app before it’s accepted by the store, and if there’s ever a problem with an app, Apple can quickly remove it from the store. When you download software from any other place on the Internet, Gatekeeper makes that safer, too. Developers can get a unique Developer ID from Apple and use it to digitally sign their apps. The Developer ID allows Gatekeeper to block apps created by malware developers and to verify that apps haven’t been tampered with. If an app was developed by an unknown developer — one with no Developer ID — Gatekeeper can keep your Mac safe by blocking the app from being installed.

126 questions
6
votes
2 answers

Mac OS Mountain Lion: Is it possible to code sign applications for Gatekeeper without paying Apple for a developer membership?

My understanding is that Mountain Lion will be released in a configuration that forbids the installation of non-signed applications by default through Gatekeeper. I currently distribute an open source application; this is a hobby project and I do…
Patrick Kenny
  • 4,515
  • 7
  • 47
  • 76
5
votes
3 answers

Download breaks OSX signature?

I've just started signing my OSX desktop app so it can be installed on OSX 10.8 easily. I'm getting a really weird issue whereby the signing works fine and I can in install if the dmg is transferred to the Mac by DropBox or FTP but if the dmg is…
Jonathan
  • 1,327
  • 3
  • 15
  • 24
4
votes
1 answer

Can Apple Silicon apps be signed with a self-signed certificate when distributing them outside the App Store?

I'm distributing my macOS app outside the App Store and so far I've never code-signed it. My app targets advanced users who know how to configure macOS to allow the app to run. With the arrival of the Apple M1 computers, however, things have changed…
Andreas
  • 9,245
  • 9
  • 49
  • 97
4
votes
1 answer

How do determine why Gatekeeper is rejecting a signed executable?

We have a multi-platform suite of command-line executables and libraries that we ported to Mac. The file layout was /Applications/ (company folder)/ (our UI).app (product name)/ bin/ ...executalbes... lib/ ...dylibs... (other…
John Perks
  • 41
  • 3
4
votes
2 answers

How to Sign a .jar file with my Apple Developer ID

I have a java executable jar file that I need to be signed with my Apple Developer ID. I don’t intend to distribute it through the app store. I will be distributing the app directly to customers through my website. I’m not intending to bypass…
Sachin Bhatia
  • 237
  • 2
  • 9
4
votes
1 answer

OS X gatekeeper/codesign: signature not valid

I'm facing a tricky problem, and I hope someone has encountered something similar before. I created an OS X app (app bundle, testing on Yosemite 10.10.2), with several helper sub apps as part of this bundle. These sub apps are stored in their own…
Charles
  • 2,615
  • 3
  • 29
  • 35
4
votes
1 answer

Do I need an Apple Developer Account in order to avoid the Gatekeeper warning?

Do I need the $99 Apple Developer Account in order for my app to avoid the "[this application] can’t be opened because it is from an unidentified developer" warning, or can I avoid that warning with the free Developer Account? I know my customers…
Troy
  • 21,172
  • 20
  • 74
  • 103
4
votes
1 answer

Why application with version 2 envelope working on OS X 10.9 not accepted by gatekeeper on OS X 10.10?

We have a Mono Mac app which is distributed outside of AppStore signed by Developer Id certificate. Gatekeeper accepts the app on OS X 10.9 (tested on 10.9.4), but it fails to accept on 10.10 DP 7. The output of some troubleshooting commands on…
phantasm
  • 105
  • 1
  • 6
4
votes
1 answer

How do I know which Gatekeeper signature does my OS X app use?

From a recent post by Apple: With the release of OS X Mavericks 10.9.5, the way that OS X recognizes signed apps will change. Signatures created with OS X Mountain Lion 10.8.5 or earlier (v1 signatures) will be obsoleted and Gatekeeper will…
zoul
  • 102,279
  • 44
  • 260
  • 354
4
votes
1 answer

OS X .dmg signature lost after download

I'm signing a .dmg containing a .app with a valid Developer ID profile. Everything is signed, frameworks included. When I run codesign -dvvv, the right certificate appears and satisfies its Designated Requirement. The application runs fine. However,…
Warren Seine
  • 2,311
  • 2
  • 25
  • 38
4
votes
1 answer

What are the implications of codesigning an OS X application with a self-signed certificate?

Apple seems to restrict some OS X APIs (e.g. sandboxing) to applications that are codesigned by a trusted certificate, e.g. one issued to members of the paid Mac Developer program. How does OS X treat applications that are codesigned with a…
lxgr
  • 3,719
  • 7
  • 31
  • 46
4
votes
1 answer

file "is damaged and can't be opened" when opening twice a mounted file

I have a mounted directory to access some images. When opening an image for the first time with open /mounted_dir/foo.jpg it opens the image in preview. When repeating the same command it gives the error: /mounted_dir/foo.jpg is damaged and can't…
timotheecour
  • 3,104
  • 3
  • 26
  • 29
4
votes
1 answer

Productsigned Mac app not installing in computers that are not mine

I have a Mac app which I have signed using the 'productsign' command from the terminal productsign --sign "3rd Party Mac Developer Installer: My company (dasdfjkaj)" InstallerUnsigned.pkg InstallerSigned.pkg productsign: signing product with…
Djokovic
  • 971
  • 2
  • 8
  • 13
4
votes
1 answer

What is the lifetime of Mac Developer ID signed certificates?

I have a small open source OSX project I've been working on that I'd like to distribute outside the App Store. With the impending release of Mountain Lion, I'd like to provide a certificate to make installation a little less painful. With the App…
pjbeardsley
  • 1,491
  • 1
  • 13
  • 17
3
votes
1 answer

Why does macOS kill static executables created by clang?

I have a minimal c program for the m1 arm cpu that returns 42: void _start() { asm("mov x0, #42;"); asm("mov x16, #1;"); asm("svc 0x80;"); } This code compiles after telling clang to use the _start symbol and returns the correct…
tommy__123__
  • 47
  • 5
1
2
3
8 9