> On 25 Jul 2016, at 15:30, Alastair Houghton <alast...@alastairs-place.net>
> wrote:
>
>
>> On 23 Jul 2016, at 00:41, Jens Alfke <j...@mooseyard.com> wrote:
>>
>>
>>> On Jul 22, 2016, at 2:46 AM, Gerriet M. Denkmann <gerr...@mdenkmann.de>
>>> wrote:
>>>
>>> When it gets some streams it will show a panel:
>>> “MyApp wants to sign using key “something” in your keychain” / “Allow”
>>> “Deny”
>>
>> Presumably this app is either acting as an SSL server, or is sending SSL
>> clients. Either of those roles involves signing data using the private key
>> associated with the certificate, to prove you own it. If the app hasn’t
>> previously used that private key, the Keychain will ask your permission to
>> let the app use it. That’s the alert. Then it updates the key’s access
>> control list to remember your app has access. But this access is (usually)
>> invalidated when the app binary is modified, so you’ll (usually) see the
>> alert again if you modify the app and run it again.
>
> Unless, of course, the application is signed with a suitable certificate, in
> which case the access will be maintained, *provided* the application’s
> signature remains valid (which it won’t on some subset of machines because of
> people using badly written language stripping software that breaks the
> signature on your bundle by tampering with it---particularly MacKeeper’s
> implementation which appears to be automatic).
>
> I’d make sure that your application is code signed. It makes it very much
> less tedious to develop or use.
This sounds like very good advice.
I looked at “Code Signing Identity” and found the following choices:
Don’t Code Sign (currently selected)
Automatic
Mac Developer
Mac Distribution
Developer ID: *
Identities in Keychain
Gerriet M. Denkmann
iPhone Developer Gerriet …. (Zxyz…)
Mac Developer Gerriet…(Zxyz…)
Other…
What would be the right thing to choose?
Kind regards,
Gerriet.
_______________________________________________
Cocoa-dev mailing list (Cocoa-dev@lists.apple.com)
Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com
Help/Unsubscribe/Update your Subscription:
https://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com
This email sent to arch...@mail-archive.com
