On Nov 30, 2009, at 9:23 AM, Matt Neuburg wrote: > If the app is code-signed, it will not run when the executable is altered.
In which case, the hacker just needs to strip the signature. If your code checks for a signature, the hacker can re-sign it with his own. If your code checks for your key in the signature, the hacker can replace the public key you're checking against with his own. etc... We had this thread a few months ago … the take-away is that checking the signature of already-running code is not a viable security technique. Checking has to be done before you load the code. "Locks are just to keep honest people out." —Jens_______________________________________________ Cocoa-dev mailing list (Cocoa-dev@lists.apple.com) Please do not post admin requests or moderator comments to the list. Contact the moderators at cocoa-dev-admins(at)lists.apple.com Help/Unsubscribe/Update your Subscription: http://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com This email sent to arch...@mail-archive.com
