Links...
 
Tighten Pro
C/C++/Cocoa tool for codesign security, Developer ID, & Mac App Store Receipt Validation

Tighten Pro - in the Mac App Store

Tighten Pro is now available in the Mac App Store. Simply click on the icon to the left to purchase directly from Apple. Or choose PKCS#7Viewer.app by clicking the image to the right.

2.27.2016
Mac Developer: Amid FBI row, Apple hires developer behind secure messaging app Signal

Amid FBI row, Apple hires developer behind secure messaging app Signal Apple is hiring Frederic Jacobs — a developer responsible for the secure chat app Signal — to work on the CoreOS security team this summer, a report noted on Friday.
Edward Snowden, the gift that keeps on giving. My favorite Snowden analysis is that he's a CIA sleeper agent tasked with reigning in the activities of the NSA. It's such a contorted, yet completely logical conclusion.

Labels:

By : Tighten Amid FBI row, Apple hires developer behind secure messaging app Signal 0 comments

 
2.24.2016
Mac Developer: Arizona prosecutor: We’re not buying any more iPhones over Apple and DOJ dispute | Ars Technica

Arizona prosecutor: We’re not buying any more iPhones over Apple and DOJ dispute | Ars Technica "On Wednesday, an Arizona county attorney's office announced that it will immediately halt 'providing iPhones as an option for replacement or upgrades for existing employees,' citing the current legal battle between Apple and the Department of Justice."
Here's a yawner from the land of McCain.

Labels:

By : Tighten Arizona prosecutor: We’re not buying any more iPhones over Apple and DOJ dispute | Ars Technica 0 comments

 
2.22.2016
Mac Developer: Former NSA director opposes iOS backdoor, but leans towards FBI in iPhone unlock debate

Former NSA director opposes iOS backdoor, but leans towards FBI in iPhone unlock debate "n Monday, a former director of the U.S. National Security Agency — Michael Hayden — took a middleground stance on the Apple/FBI encryption debate, supporting the FBI in the short term while opposing a universal backdoor in devices. "
READ: We like backdoors, but only when the NSA is the only one that has access. Sit and spin, FBI!

Labels:

By : Tighten Former NSA director opposes iOS backdoor, but leans towards FBI in iPhone unlock debate 0 comments

 
2.19.2016
Mac Developer: US Department of Justice files motion to force Apple to crack terrorist's iPhone

US Department of Justice files motion to force Apple to crack terrorist's iPhone The DOJ has asked a federal judge to compel Apple to help the FBI in its investigation of the San Bernardino, Calif., terrorist attack in December that resulted in 16 deaths and another 24 injuries. Friday's filing was first revealed by ABC News.
According to what I've read, the NSA could hack into this phone remotely. I'm not sure that Apple is needed if they have the physical device. Aside from the PR-opaganda that is.

Labels:

By : Tighten US Department of Justice files motion to force Apple to crack terrorist's iPhone 0 comments

 
2.17.2016
Mac Developer: Extremely severe bug leaves dizzying number of software and devices vulnerable | Ars Technica

Extremely severe bug leaves dizzying number of software and devices vulnerable | Ars Technica "It's a big deal," Washington, DC-based security researcher Kenn White told Ars, referring to the vulnerability. "This is a core bedrock function across Linux. Things that do domain name lookups have a real vulnerability if the attacker can answer."
Hard to imagine a C-language API more central to security than name lookup. Code review anyone?

Labels:

By : Tighten Extremely severe bug leaves dizzying number of software and devices vulnerable | Ars Technica 0 comments

 
Mac Developer: How Apple could hack terrorist's iPhone for FBI (if it wanted to) | Cult of Mac

How Apple could hack terrorist's iPhone for FBI (if it wanted to) | Cult of Mac The iPhone 5c doesn’t have Touch ID, though, so the FBI wants to brute-force unlock it by guessing the terrorist’s PIN. The problem is, iOS will automatically wipe the device after too many unsuccessful attempts — and iOS also delays how often you can guess a passcode. So the FBI created a plan for how Apple can help the bureau get around it.
It's like eminent domain, only more digital.

Labels:

By : Tighten How Apple could hack terrorist's iPhone for FBI (if it wanted to) | Cult of Mac 0 comments

 
2.16.2016
Mac Developer: Some developers caught unprepared for Apple WWDR certificate update

Some developers caught unprepared for Apple WWDR certificate update Despite advance warning from Apple, some developers were taken by surprise after the company's previous Worldwide Developer Relations (WWDR) Intermediate Certificate expired on Sunday, preventing approval for apps and services.
Pants down show your tooshie.

Labels: ,

By : Tighten Some developers caught unprepared for Apple WWDR certificate update 0 comments

 
2.09.2016
Mac Developer: “Huge” number of Mac apps vulnerable to hijacking, and a fix is elusive | Ars Technica

“Huge” number of Mac apps vulnerable to hijacking, and a fix is elusive | Ars Technica Camtasia, uTorrent, and a large number of other Mac apps are susceptible to man-in-the-middle attacks that install malicious code, thanks to a vulnerability in Sparkle, the third-party software framework the apps use to receive updates.
I've never been a fan of auto-updates. I mean, have you seen any of the Terminator movies? A huge network of unix machines with the ability to patch their own software? That's a recipe for disaster.

Labels:

By : Tighten “Huge” number of Mac apps vulnerable to hijacking, and a fix is elusive | Ars Technica 0 comments

 
2.06.2016
Mac Developer: UC Berkeley profs lambast new “black box” network monitoring hardware | Ars Technica

UC Berkeley profs lambast new “black box” network monitoring hardware | Ars Technica The Fidelis hardware and software is designed to "detect attacks" and analyze "every single packet that traverses the network."
Trust us, it's secure, not at all like the Juniper routers that feature remote access to well, anyone...

Labels:

By : Tighten UC Berkeley profs lambast new “black box” network monitoring hardware | Ars Technica 0 comments

 
2.05.2016
Mac Developer: Big in Tehran: Inside Iran’s $140M console and PC market

Big in Tehran: Inside Iran’s $140M console and PC market The eighth generation of consoles, however, has proven uncrackable, so customers have no choice but to pay the substantially higher costs. PS4 ownership is remarkably high, reflecting the willingness of Iranian gamers to access the best regardless of cost.
State sponsored piracy. Our new friends in Iran!

Labels:

By : Tighten Big in Tehran: Inside Iran’s $140M console and PC market 0 comments

 
Mac Developer: Mysterious spike in WordPress hacks silently delivers ransomware to visitors | Ars Technica

Mysterious spike in WordPress hacks silently delivers ransomware to visitors | Ars Technica

It's not yet clear how the WordPress sites are getting infected in the first place. It's possible that administrators are failing to lock down the login credentials that allow the site content to be changed. It's also feasible that attackers are exploiting an unknown vulnerability in the CMS, one of the plugins it uses, or the operating system they run on.
JavaScript is the new Flash, the security gift that keeps on giving.

Labels:

By : Tighten Mysterious spike in WordPress hacks silently delivers ransomware to visitors | Ars Technica 0 comments

 
Mac Developer: Apple ordered to pay $625M in revived VirnetX patent trial

Apple ordered to pay $625M in revived VirnetX patent trial

After a week of testimony and deliberation, a jury in the patent owner-friendly East Texas Federal District Court handed down a unanimous decision against Apple's FaceTime, iMessage and VPN services, as well as the devices running them, finding each in infringement of VirnetX intellectual property covering secure communications protocols.
Gifts from the state of Texas have included this, president George W. Bush, Enron and the incident on the grassy knoll.

Labels:

By : Tighten Apple ordered to pay $625M in revived VirnetX patent trial 0 comments

 
2.01.2016
Mac Developer: NSA, GCHQ used open source software to spy on Israeli, Syrian drones | Ars Technica

NSA, GCHQ used open source software to spy on Israeli, Syrian drones | Ars Technica Iraqi insurgents, using gear that was possibly provided by Iran, were able to use SkyGrabber, a $26 "off-the-shelf" software package, to intercept video feeds from Predator drones live in 2008 and 2009 (though those feeds were not encrypted at the time).
I guess even the DOD needs a pre-existing 3rd party software module from time to time.

Labels:

By : Tighten NSA, GCHQ used open source software to spy on Israeli, Syrian drones | Ars Technica 0 comments

 

 

 
 
 

 Tighten    
 Generate    
 Secure    
 Inspect    
 Quarantino    
 QTZ    
 Downloads    
 Support    
 Documentation    
 Tighten App.app    
 Tighten Pro.app    
 PKCS#7Viewer.app    
 Quarzenegger.app    
 About    
 Hire    
 Contact    
 Blogger    
 FaceBook    
 iTunes Direct Link    
 Hollywood CA    
 spctl --assess -vvv    
 spctl --master-enable    
 spctl --master-disable    
 Mac App Store Receipt Validation    
 Apple Code Signing Certificates    
 Gatekeeper Developer ID Apple    
 Xcode codesign tutorial    
 [Site Map]    
 


Copyright © 2005-2020
All Rights Reserved
Tighten Pro