Tighten Pro
C/C++/Cocoa tool for codesign security, Developer ID, & Mac App Store Receipt Validation

Tighten Pro - in the Mac App Store

Tighten Pro is now available in the Mac App Store. Simply click on the icon to the left to purchase directly from Apple. Or choose PKCS#7Viewer.app by clicking the image to the right.

5.25.2015
Mac Developer: Security features in Mac OS X Yosemite | Kaspersky Lab Official Blog

Security features in Mac OS X Yosemite | Kaspersky Lab Official Blog
It doesn’t, however, mean that it is an “absolutely” protected operating system – unfortunately, there are no such systems. Moreover, the number of threats targeting OS X, specifically, is growing as is the number of Mac users. This certainly has drawn the attention of criminals, who are looking into vulnerabilities and occasionally finding them.


Some attention directed here. Not nearly as much as directed elsewhere, thank goodness.

Labels: , ,

By : Tighten Security features in Mac OS X Yosemite | Kaspersky Lab Official Blog 0 comments

5.24.2015
Mac Developer: Chrome for Android goes almost “entirely open source” | 9to5Google

Chrome for Android goes almost “entirely open source” | 9to5Google
Launched in September 2008, Google’s Chrome browser is now dominant in its share of the desktop web browser market, with approximately 1 in 4 Internet users interfacing with the web using the browser.


This is now the only secure, modern browser that runs under Snow Leopard. Which indicates security policy. I wish they would port Chrome to XP SP2. I'm sure that's still 500 million desktops, if there were 2 billion to begin with.

Labels:

By : Tighten Chrome for Android goes almost “entirely open source” | 9to5Google 0 comments

5.23.2015
Mac Developer: Apple attends 'spy summit' to discuss data privacy, mass surveillance issues

Apple attends 'spy summit' to discuss data privacy, mass surveillance issues
According to The Intercept, which obtained a copy of the event program, the summit was chaired by former British MI6 Sir John Scarlett as part of an ongoing series of conferences put on by the Ditchley Foundation. Said to discuss "complex issues of international concern," these highly confidential meetings are held at the foundation's mansion in Oxfordshire.


As long as they've got someone with the title "Sir" leading the discussion, I'm sure everything will be grand.

Labels:

By : Tighten Apple attends 'spy summit' to discuss data privacy, mass surveillance issues 0 comments

5.21.2015
Mac Developer: Cult of Android - NSA hijacked Google Play to install spyware

Cult of Android - NSA hijacked Google Play to install spyware
The National Security Agency and several of its allies around the world have hijacked connections to multiple Android app stores to plant spyware on hundreds of millions of devices.


Hmmmm....

Labels:

By : Tighten Cult of Android - NSA hijacked Google Play to install spyware 0 comments

5.18.2015
Mac Developer: Intelligence officers given immunity from hacking laws, tribunal told | UK news | The Guardian

Intelligence officers given immunity from hacking laws, tribunal told | UK news | The Guardian: "GCHQ staff, intelligence officers and police have been given immunity from prosecution for hacking into computers, laptops and mobile phones under legislative changes that were never fully debated by parliament, a tribunal has been told."
What's good for the goose is good for the gander. Er, um, what was the middle part again?

Labels: ,

By : Tighten Intelligence officers given immunity from hacking laws, tribunal told | UK news | The Guardian 0 comments

5.15.2015
Mac Developer: White House appoints NSA-criticizing computer scientist Ed Felten to key post | VentureBeat | Security | by Dylan Tweney

White House appoints NSA-criticizing computer scientist Ed Felten to key post | VentureBeat | Security | by Dylan Tweney: "White House’s appointment today of Ed Felten, a Princeton computer science professor, as its deputy U.S. chief technology officer."
This looks good.

Labels: , ,

By : Tighten White House appoints NSA-criticizing computer scientist Ed Felten to key post | VentureBeat | Security | by Dylan Tweney 0 comments

5.11.2015
Mac Developer: Install Xcode 3.2.6 on Lion & Mountain Lion - CocoaBob

Install Xcode 3.2.6 on Lion & Mountain Lion - CocoaBob: "Install Xcode 3.2.6 on Lion & Mountain Lion 2013-04-12 Although I figured out how it works by myself, I still wanted to find some simpler procedures. Finally, I found these 2 tutorials from Eugene’s blog, which are so perfect that I’d like to share them."
Generally researching this and thought this was an informative post.
Xcode 3 on Mountain Lion: "The Definitive Guide to Installing Xcode 3 on Mountain Lion (Without Kernel Panics)"

(Via .)

Another great one!

Labels: , ,

By : Tighten Install Xcode 3.2.6 on Lion & Mountain Lion - CocoaBob 0 comments

5.08.2015
Mac Developer: Unity chief John Riccitiello on clash of big ideas: 'Sony f***ing nailed it, and they deserve the victory' | GamesBeat | Games | by Gavin Greene

Unity chief John Riccitiello | by Gavin Greene: "‘Go to anyone of these conferences, and someone will pull you aside and show you something on their phone, and it’s almost invariably a Clash of Clans clone,’ Riccitiello said. ‘There are examples of games at the very top of the charts where they literally took someone else’s idea and polished it and improved on it in a small way. But that level of execution is to be admired anywhere, in the execution there is art. But ultimately it is … demoralizing to see the level of copying and ‘me-too-ism’ that is typical of game development, it’s sort of the easiest route, and I understand why people do it.’"
The most articulate description of the problem of the independent developer that I have yet read.

Labels:

By : Tighten Unity chief John Riccitiello on clash of big ideas: 'Sony f***ing nailed it, and they deserve the victory' | GamesBeat | Games | by Gavin Greene 0 comments

5.01.2015
Mac Developer: Apple iPad software issue grounds 'several dozen' American Airlines flights [u]

Apple iPad software issue grounds 'several dozen' American Airlines flights [u]: "At least one American Airlines flight was grounded before takeoff on Tuesday due to a software bug that disabled pilots' iPad-powered electronic flight bags, potentially affecting the carrier's entire fleet of 737 aircraft."
OTA upgrades are not the future of enterprise and mission-critical computing.

By : Tighten Apple iPad software issue grounds 'several dozen' American Airlines flights [u] 0 comments

4.29.2015
Mac Developer: Microsoft announces new tool for effortlessly porting iOS apps to Windows 10 | 9to5Mac

Microsoft announces new tool for effortlessly porting iOS apps to Windows 10 | 9to5Mac: "Microsoft announced today during its Build conference that it will release a tool for developers to port their iOS apps directly to Windows 10 as ‘universal apps’ that run on both phones and desktop computers. Developers will be able to feed their existing Objective-C code into a new software package and have it converted to work on the upcoming PC operating system."
Saved from my inevitable wrangling of Cocotron? Or Xamarin. Or both?

Labels:

By : Tighten Microsoft announces new tool for effortlessly porting iOS apps to Windows 10 | 9to5Mac 0 comments

4.26.2015
Mac Developer: How to turn great iOS app ideas into something real | Cult of Mac

How to turn great iOS app ideas into something real | Cult of Mac
But I can offer one solid piece of advice for anybody hoping to turn a clever idea into a world-beating app: Find yourself an amazing developer and hold on tight.


Well said, Mr. Cult.

Labels:

By : Tighten How to turn great iOS app ideas into something real | Cult of Mac 0 comments

4.21.2015
Mac Developer: OS X 10.10.3 update failed to fix Rootpipe vulnerability, says former NSA staffer | 9to5Mac

OS X 10.10.3 update failed to fix Rootpipe vulnerability, says former NSA staffer | 9to5Mac: "A former NSA staffer says that the OS X 10.10.3 update which Apple claims fixed a significant security vulnerability has failed to do so, reports Forbes. Patrick Wardle, who now heads up research at security firm Synack, demonstrated the vulnerability in a video (without revealing exactly how it was done) to allow Apple time to issue a further fix."
Hmmmm….

Labels:

By : Tighten OS X 10.10.3 update failed to fix Rootpipe vulnerability, says former NSA staffer | 9to5Mac 0 comments

4.13.2015
Mac Developer: iOS apps aren't secure -- what Apple needs to learn from hacking history | VentureBeat | Security | by Minpyo Hong, Seworks

iOS apps aren't secure -- what Apple needs to learn from hacking history | VentureBeat | Security | by Minpyo Hong, Seworks: "This scenario hasn’t actually changed all that much in the mobile era. Hackers still search through binary files to create exploits to gain server access and admin privileges. And all too often, I see iOS developers repeating mistakes we made during the PC and web days, forgetting (or not knowing) to add security measures around every layer of the mobile ecosystem. These developers are under the illusion that the iOS ecosystem is completely safe, or that they don’t need to actively take measures to protect themselves. This is not the case."
One perspective.

Labels:

By : Tighten iOS apps aren't secure -- what Apple needs to learn from hacking history | VentureBeat | Security | by Minpyo Hong, Seworks 0 comments

Mac Developer: Apple’s iOS 8.3 update blocks access to apps from desktop file managers like iExplorer | 9to5Mac

Apple’s iOS 8.3 update blocks access to apps from desktop file managers like iExplorer | 9to5Mac: "Apple has seemingly moved to block desktop apps that allow users to manage files on their iOS devices in its recent iOS 8.3 update, as noted by MacRumors. Many popular file transfer apps, such as iFunBox, iTools, iExplorer, iBackupBot and PhoneView, have experienced the issue that prevents users from accessing file directories for apps on iOS devices."
Matrix Mobil Ave Trainman
Down here, I make the rules!

Labels:

By : Tighten Apple’s iOS 8.3 update blocks access to apps from desktop file managers like iExplorer | 9to5Mac 0 comments

4.09.2015
Mac Developer: Update your Mac: Apple fixes major flaw in OS X Yosemite, but won't patch Lion, Mountain Lion or Mavericks

Update your Mac: Apple fixes major flaw in OS X Yosemite, but won't patch Lion, Mountain Lion or Mavericks: "As a result, OS X users are urged to upgrade to Yosemite version 10.10.3 as soon as possible. Apple will not patch versions older than 10.10, reportedly due to the complexity of the fix."
Enterprise strategy: security alert! Please purchase new hardware immediately! Let's continue to torture 3rd party developers with increasingly complicated sandbox rules. While we open the kimono to hackers. Yay!

Labels:

By : Tighten Update your Mac: Apple fixes major flaw in OS X Yosemite, but won't patch Lion, Mountain Lion or Mavericks 0 comments

Mac Developer: Meet Anonymous International, the hackers taking on the Kremlin | World news | The Guardian

Meet Anonymous International, the hackers taking on the Kremlin | World news | The Guardian: "...a member of Anonymous International, better known as Shaltai Boltai (Humpty Dumpty in Russian), arguably the most famous hacker group in the country after claiming responsibility for a series of high-profile leaks."
The brave new economy.

Labels:

By : Tighten Meet Anonymous International, the hackers taking on the Kremlin | World news | The Guardian 0 comments

4.08.2015
Mac Developer: Controversial torrent app Popcorn Time comes to non-jailbroken iPhones by skipping App Store | 9to5Mac

Controversial torrent app Popcorn Time comes to non-jailbroken iPhones by skipping App Store | 9to5Mac: "Users will have to download ‘iOS installer’ software to their Windows or Mac desktop (Mac support is arriving in the coming weeks), connect their iOS device using a USB cable and follow onscreen instructions to complete the installation. This means they are evading the normal App Store installation process, although the details are not clear."
Fascinating! I think of all the time I've wasted learning about the sandbox every time a hacker announces a root kit that can be implemented on a webpage.

Labels:

By : Tighten Controversial torrent app Popcorn Time comes to non-jailbroken iPhones by skipping App Store | 9to5Mac 0 comments

4.02.2015
Mac Developer: A Look Inside the Ask Toolbar Installed with Java for Mac | The Mac Security Blog

A Look Inside the Ask Toolbar Installed with Java for Mac | The Mac Security Blog: "Java and Ask Toolbar Installation Process At the beginning of the installation process, the Java installer creates a temporary helper, com.oracle.JavaInstallHelper, in /Library/PrivilegedHelperTools/"
The battle for your desktop from a language technology nobody wants on the desktop (except Android devs).

Labels: , , ,

By : Tighten A Look Inside the Ask Toolbar Installed with Java for Mac | The Mac Security Blog 0 comments

3.31.2015
Mac Developer: China reportedly defers banking technology regulations, relieves pressure on foreign firms

China reportedly defers banking technology regulations, relieves pressure on foreign firms: "Citing an unnamed U.S. official, Reuters reports U.S. Treasury Secretary Jack Lew met with Chinese officials, including Premier Li Keqiang, in Beijing presumably to discuss concerns over security measures designed to protect state-backed banking institutions from outside threats.
Code security doesn't go any higher than this.

Labels: , ,

By : Tighten China reportedly defers banking technology regulations, relieves pressure on foreign firms 0 comments

3.25.2015
Mac Developer: Woz says Apple would never hire him or Steve Jobs today | Cult of Mac

Woz says Apple would never hire him or Steve Jobs today | Cult of Mac: "Steve Wozniak thinks he and co-founder Steve Jobs could never have found employment at the company they created together, had they been in their twenties in 2015.

‘I look at the experience and education levels you need to get a job at Apple today and I think, ‘Well, Steve Jobs and I never could’ve gotten a job at Apple today,'’ Woz told The Australian Financial Review in an interview."
But they wouldn't need to because they could download Xcode and spend $100 to enroll in an Apple developer program and start their own company that way. It's the eco-system, silly.

Labels:

By : Tighten Woz says Apple would never hire him or Steve Jobs today | Cult of Mac 0 comments

Mac Developer: Google warns of fake digital certificates issued for its domains and potentially others (Updated) | VentureBeat | Security | by Dylan Tweney

Google warns of fake digital certificates issued for its domains and potentially others (Updated) | VentureBeat | Security | by Dylan Tweney: "Google revealed today that it has discovered several fake digital certificates for some of its domains.

That’s bad, because any browser accessing these domains via transport layer security (TLS; the latest security protocol, and a successor to SSL) counts on a certificate in order to be sure that it’s connecting with the real McCoy, not some imposter."
Everything is going to be stress tested in ways that can't even imagine.

Labels: ,

By : Tighten Google warns of fake digital certificates issued for its domains and potentially others (Updated) | VentureBeat | Security | by Dylan Tweney 0 comments

3.24.2015
Mac Developer: Apple's Safari among browsers taken down at Pwn2Own day 2

Apple's Safari among browsers taken down at Pwn2Own day 2: "South Korean security researcher Jung Hoon Lee toppled Safari with a use-after-free vulnerability, according to Threatpost. Lee was then able to bypass Safari's sandbox thanks to an uninitialized stack pointer, with the combined exploits netting him some $50,000 in prize money."
It's unfortunate, but the lazy code of browser-writers penalize everyone else who must spend months reworking application software to work within the confines of increasingly restrictive security sandboxes.

It's the browser. And apps that thinly wrap the browser (read: Facebook).

Labels: ,

By : Tighten Apple's Safari among browsers taken down at Pwn2Own day 2 0 comments

3.20.2015
Mac Developer: Apple reportedly cracks down on antivirus apps from iOS App Store, many apps pulled | 9to5Mac

Apple reportedly cracks down on antivirus apps from iOS App Store, many apps pulled | 9to5Mac: "One casualty of the removal is Intego’s VirusBarrier, which claims that this takedown was not specific to its product with Apple deciding the entire category of antivirus products is now off-limits."
I like the fact that Apple is fairly lax about editorializing App Store content, but it would be good if the app store became organized around search because otherwise in the long term, Google will be used to find apps in the store.

Labels: ,

By : Tighten Apple reportedly cracks down on antivirus apps from iOS App Store, many apps pulled | 9to5Mac 0 comments

3.19.2015
Mac Developer: Hundreds of iOS apps vulnerable to HTTPS-based FREAK attack

Hundreds of iOS apps vulnerable to HTTPS-based FREAK attack
Security researchers at FireEye recently went through thousands of iOS and Android apps and found that while a bulk are not vulnerable to the "FREAK" (Factoring RSA Export Keys) attack, a significant number are, reports Ars Technica.


Internal app security is the next frontier of security.

Labels: ,

By : Tighten Hundreds of iOS apps vulnerable to HTTPS-based FREAK attack 0 comments

3.17.2015
Mac Developer: Who's afraid of the Apple Watch?

Who's afraid of the Apple Watch?: "When experts at Bluebox Security examined a series of holiday-promoted Android products being sold in the U.S. at major retailers including Target and Walmart, it found that virtually every one of them was contaminated by malware or wide open vulnerabilities, in some cases with apparent malice involved, in the same fashion as Lenovo's intentional, ROI-motivated installation of Superfish advertising malware on its Windows notebooks."
It's not always good to lead in a category.

Labels:

By : Tighten Who's afraid of the Apple Watch? 0 comments

3.10.2015
Mac Developer: CIA has waged 'secret campaign' to crack Apple's iOS security - report

CIA has waged 'secret campaign' to crack Apple's iOS security - report: "Classified documents released by whistleblower Edward Snowden reveal that the Central Intelligence Agency has been engaged in a multi-year coordinated effort to crack the security of Apple's iOS platform, which powers and protects the iPhone and iPad."
If they were smart, they'd join forces with the NSA. Love that compartmentalization!

Labels:

By : Tighten CIA has waged 'secret campaign' to crack Apple's iOS security - report 0 comments

3.07.2015
Mac Developer: Security firm finds preinstalled malware on Xiaomi Mi 4 smartphone | VentureBeat | Security | by Ruth Reader

Security firm finds preinstalled malware on Xiaomi Mi 4 smartphone | VentureBeat | Security | by Ruth Reader: "Data security firm Bluebox has discovered preinstalled malware and a host of other issues with a Xiaomi Mi 4 device the company tested. Scarier still, the phone seems to have been tampered with by an unidentified third party."
Brave new world.

Labels: ,

By : Tighten Security firm finds preinstalled malware on Xiaomi Mi 4 smartphone | VentureBeat | Security | by Ruth Reader 0 comments

 

 
 
 

 Tighten    
 Generate    
 Secure    
 Inspect    
 Quarantino    
 Downloads    
 Support    
 Documentation    
 Tighten App.app    
 Tighten Pro.app    
 PKCS#7Viewer.app    
 About    
 Hire    
 Contact    
 Blogger    
 FaceBook    
 iTunes Direct Link    
 Hollywood CA    
 spctl --assess -vvv    
 spctl --master-enable    
 spctl --master-disable    
 Mac App Store Receipt Validation    
 Apple Code Signing Certificates    
 Gatekeeper Developer ID Apple    
 Xcode codesign tutorial    
 [Site Map]    
 


Copyright © 2005-2015
All Rights Reserved
Tighten Pro