Links...
 
Tighten Pro
C/C++/Cocoa tool for codesign security, Developer ID, & Mac App Store Receipt Validation

Tighten Pro - in the Mac App Store

Tighten Pro is now available in the Mac App Store. Simply click on the icon to the left to purchase directly from Apple. Or choose PKCS#7Viewer.app by clicking the image to the right.

10.25.2012
Mac Developer: The Steve Jobs I Knew - Walt Mossberg - Mossblog - AllThingsD

The Steve Jobs I Knew - Walt Mossberg - Mossblog - AllThingsD: "That Steve Jobs was a genius, a giant influence on multiple industries and billions of lives, has been written many times since he retired as Apple’s CEO in August. He was a historical figure on the scale of a Thomas Edison or a Henry Ford, and set the mold for many other corporate leaders in many other industries."

This is a terrific article. Delayed by 15 minutes.

Labels:

By : Tighten The Steve Jobs I Knew - Walt Mossberg - Mossblog - AllThingsD 0 comments

 
10.24.2012
Mac Developer: ARM-Based Chips Make Better Windows PCs, Says Qualcomm CEO - Ina Fried - Mobile - AllThingsD

ARM-Based Chips Make Better Windows PCs, Says Qualcomm CEO - Ina Fried - Mobile - AllThingsD: "Qualcomm has sponsored a contest to encourage developers to write Windows RT apps as well as, in some cases, help to fund their development. Jacobs said that Microsoft isn’t really being given the benefit of the doubt here, despite its long track record of attracting developers."

Unfortunately, nothing as powerful as Cocoa is likely to debut on any platform any time soon.

Labels: ,

By : Tighten ARM-Based Chips Make Better Windows PCs, Says Qualcomm CEO - Ina Fried - Mobile - AllThingsD 0 comments

 
10.23.2012
Mac Developer: Lightning Connector Cloned

Third-party manufacturers in China are supposedly mass-producing Lightning cables: with working authentication chips allegedly reverse engineered from Apple's official model, and are shopping their wares to overseas resellers...


No security technology is foolproof. Do your best to protect your work, keep innovating.

Labels: ,

By : Tighten Lightning Connector Cloned 0 comments

 
10.12.2012
Mac Developer: com.apple.security.temporary-exception.sbpl

The com.apple.security.temporary-exception.sbpl entitlement seems to have been given bona fide status: login to itunesconnect and you can at least add it to your list of requested entitlements for submitting.  Good news, because I'm not sure how you can write code in a posix environment without posix shared memory and semaphores.

Labels: ,

By : Tighten com.apple.security.temporary-exception.sbpl 0 comments

 
10.11.2012
Mac Developer: FileXaminer

FileXaminer: "FileXaminer is an award winning 'Get Info' application. FileXaminer allows you to modify file and folder attributes that the Finder cannot. FileXaminer is powerful and easy to use – making it the best 'Get Info' application for Mac OS X."

I'm trying to figure out why some code I'm working on will not work correctly in the sandbox and I believe it has to do with file permissions. I had a hankering for a GUI tool and had a bit of trouble finding something.

Labels: , ,

By : Tighten FileXaminer 0 comments

 
Mac Developer: Access Control Lists in OS X

Mac OS X 10.4 Tiger | Ars Technica: "Access control lists, or ACLs, are a finer-grained, more flexible way to control file permissions: who can do what to which files. In Tiger, ACLs are a supplement to the traditional Unix file permissions. Since I've never covered Unix file permissions in a Mac OS X article before, I'd like to do so now. "

Good article on ACL permissions I found googling.

Labels: , ,

By : Tighten Access Control Lists in OS X 0 comments

 
10.10.2012
Mac Developer: sandbox policy language temporary entitlement

If you're adopting sandboxing outside the App Store, the syntax for the sandbox policy language temporary exception entitlement is:
  <key>com.apple.security.temporary-exception.sbpl</key>
    <string>
        (begin
            (allow system-fsctl))
    </string>

Labels: ,

By : Tighten sandbox policy language temporary entitlement 0 comments

 
Mac Developer: How does Apple Sandbox?

Michael Tsai - Blog - Aperture 3.4, Sandboxing, and FlickrExport

mjtsai.com/blog/2012/09/23/aperture-3-4-sandboxing-and-flickrexport/

The short answer is, a complex application like Aperture cannot be sandboxed using the typical rules.

Labels: ,

By : Tighten How does Apple Sandbox? 0 comments

 
Mac Developer: Sandbox History III: OSX Sandboxing Design - The Chromium Projects

OSX Sandboxing Design - The Chromium Projects: "Sandboxing treats a process as a hostile environment which at any time can be compromised by a malicious attacker via buffer overruns or other such attack vectors. Once compromised, the goal is to allow the process in question access to as few resources of the user's machine as possible, above and beyond the standard file-system access control and user/group process controls enforced by the kernel."

A very clear description of the sandbox.

Labels: ,

By : Tighten Sandbox History III: OSX Sandboxing Design - The Chromium Projects 0 comments

 
Mac Developer: Sandbox History II: sandbox_init()

const char *sandbox_profile = '(version 1)'
'(deny default)'
/* * Allow use of semaphores: sem_init() etc. This is required on * OS X 10.6 but not on 10.5. */
'(allow ipc-posix-sem)'
/* * Allow shared memory segments to be created: shm_open() etc.
This * is required on OS X 10.6 but not on 10.5. */
'(allow ipc-posix-shm)';

void NaClEnableOuterSandbox()
{ char *error;
int rc = sandbox_init(sandbox_profile, 0, &error);
if (rc != 0) NaClLog(LOG_FATAL, 'Failed to initialise Mac OS X sandbox: %s\n', error);
}
SOURCE: nativeclient.googlecode.com

Labels: , ,

By : Tighten Sandbox History II: sandbox_init() 0 comments

 
Mac Developer: Sandbox History: Apple Sandboxes Part 1 at Useful Security

Apple Sandboxes Part 1 at Useful Security: "Linux isn’t the only operating system with activity in the enhanced access control department. Apple recently released Mac OS X 10.5 Leopard, which includes a new feature called a sandbox (or seatbelt, depending on where you’re looking) as well. I delved into the sandbox mechanisms a bit and wanted to report my findings."

Origins of the sandbox system used in Mac OS X.

Labels: , ,

By : Tighten Sandbox History: Apple Sandboxes Part 1 at Useful Security 0 comments

 
Mac Developer: PKCS#7Viewer Update Now Available

An update to PKCS#7Viewer.app is now live in the Mac App Store.

Labels: , , , ,

By : Tighten PKCS#7Viewer Update Now Available 0 comments

 
10.09.2012
Mac Developer: Sandboxing sem_open entitlement

SandboxingI did the same for now. At the Developer forums I got this reply from someone who had the exact same issues with using sem_open in a Sandbox.

I'm on the lookout for any information about temporary exception entitlements that can be applied to named semaphores.

In keeping with the spirit of information wants to be free, I present here:

http://reverse.put.as/wp-content/uploads/2011/09/Apple-Sandbox-Guide-v1.0.pdf

In particular, I'm looking for a solution that both works on 10.7.4 and Mountain Lion.

UPDATE: Here's an example of an entitlement for shared memory and semaphores:
  <key>com.apple.security.temporary-exception.sbpl</key>
    <string>
        (begin
            (allow ipc-posix-sem)
            (allow ipc-posix-shm)
    </string>

Labels: , , ,

By : Tighten Sandboxing sem_open entitlement 0 comments

 
10.01.2012
Mac Developer: Tighten Free 1.0.11

Update to Tighten Free version 1.0.11. Minor changes include adding obfuscation to enum symbols and eliminating warnings about unused statements.

Labels: , , , ,

By : Tighten Tighten Free 1.0.11 0 comments

 

 

 
 
 

 Tighten    
 Generate    
 Secure    
 Inspect    
 Quarantino    
 Downloads    
 Support    
 Documentation    
 Tighten App.app    
 Tighten Pro.app    
 PKCS#7Viewer.app    
 About    
 Hire    
 Contact    
 Blogger    
 FaceBook    
 iTunes Direct Link    
 Hollywood CA    
 spctl --assess -vvv    
 spctl --master-enable    
 spctl --master-disable    
 Mac App Store Receipt Validation    
 Apple Code Signing Certificates    
 Gatekeeper Developer ID Apple    
 Xcode codesign tutorial    
 [Site Map]    
 


Copyright © 2005-2015
All Rights Reserved
Tighten Pro