Mac Developer: Of Flash Player versions and codesigning and signatures | Jaharmi’s Irreality
Of Flash Player versions and codesigning and signatures | Jaharmi’s Irreality
However, it’s also diﬃcult to understand why a large corporation with the resources of Adobe cannot codesign a piece of software as critical to the Mac OS X browsing experience as the Adobe Flash plugin is — especially when its “Install Manager” application is signed."
One of the many problems with Flash vulnerabilities. You can't even check to see if the Flash plug-in is authentic.
Yesterday I opened a Safari session on Mavericks and was pummelled with dialog boxes (reminisent of Windows popups) asking me to upgrade Flash.
I was redirected to the Adobe website and didn't think to check the codesign on the Flash installer before installing. What a nightmare!
Labels: codesigning, security