[OSX] Sign the .app with an Apple developer certificate

(previously 'DEVELOPER') Private forum for registered community members. To register, please visit www.prison-architect.com/register.

Moderator: NBJeff

Userbla
level0
Posts: 8
Joined: Wed Sep 26, 2012 7:12 pm

[OSX] Sign the .app with an Apple developer certificate

Postby Userbla » Sun Sep 30, 2012 9:21 am

Apple's new Gatekeeper feature in Mountain Lion requires .apps to be signed with a developer certificate. You can get around this fairly easily as the user, but it's something you should do for future releases. You will need to sign up for a Mac developer account for 50 quid or so to get a certificate.
Illanair
level3
level3
Posts: 270
Joined: Tue Jan 11, 2011 8:43 pm
Location: Denmark

Postby Illanair » Sun Sep 30, 2012 10:42 am

Sounds like a waste of time to be honest... 50 quid for a certificate.

Welcome to the closed markets!
Vampyre
level1
level1
Posts: 26
Joined: Mon Dec 13, 2010 5:39 pm

Postby Vampyre » Sun Sep 30, 2012 1:47 pm

The gatekeeper doesn't "require" an app to be signed... It requires it by default but can be disabled. I know you mentioned the user can get around it, but I'm against this politic.

*** Totally off topic here *** To show you I totally agree with you on that matter, personally, I'm very much concerned about what Microsoft is cooking with it's closed windows 8 system, as much as I'm concerned with the fact Apple could block programs that are not signed. I'm against this politic and will not dare to switch to Linux should they end up with such a solution *** End of off topic ***

That being said, I'm against the signed apps. Just a matter for Apple to do even more money. I prefer IV keeps the 50 bucks and do something more useful with it. Oh, and for the short story, I'm under Mountain Lion ;-)
gepeto
level0
Posts: 4
Joined: Mon Nov 15, 2004 4:57 pm

Postby gepeto » Sun Sep 30, 2012 5:44 pm

I don't understand how someone could be against the signed app. One of the things it does is It ensures the executable has not been modified before you run it.

I am certain they will sign it but of course it probably doesn't make sense at this stage. It's not game breaking and we're using an alpha so we shouldn't expect that everything is "final delivery quality".

How could they afford to release an app that a normal person would not be able to run by simply double clicking it? Gatekeeper's a good thing. It has nothing to do with closed systems and everything to do with security.
superspeck
level1
level1
Posts: 13
Joined: Thu Sep 27, 2012 5:33 am
Location: United States
Contact:

Postby superspeck » Sun Sep 30, 2012 5:56 pm

Linux has been app signing for years, although as usual it's free-as-in-beer. It's the only way to be sure that you're downloading what the developer says they posted and not something else. The "entry fee" for an apple developer account is so low that the additional security will be hugely helpful. The ability to get the game into the app store worldwide would probably boost sales in excess of the fee for joining the program.
Illanair
level3
level3
Posts: 270
Joined: Tue Jan 11, 2011 8:43 pm
Location: Denmark

Postby Illanair » Sun Sep 30, 2012 6:34 pm

gepeto wrote:I don't understand how someone could be against the signed app. One of the things it does is It ensures the executable has not been modified before you run it.

How could they afford to release an app that a normal person would not be able to run by simply double clicking it? Gatekeeper's a good thing. It has nothing to do with closed systems and everything to do with security.


And you'd be horribly wrong.
steviebuk
level2
level2
Posts: 99
Joined: Sat Sep 29, 2012 7:51 pm

Postby steviebuk » Sun Sep 30, 2012 7:36 pm

gepeto wrote:I don't understand how someone could be against the signed app. One of the things it does is It ensures the executable has not been modified before you run it.

I am certain they will sign it but of course it probably doesn't make sense at this stage. It's not game breaking and we're using an alpha so we shouldn't expect that everything is "final delivery quality".

How could they afford to release an app that a normal person would not be able to run by simply double clicking it? Gatekeeper's a good thing. It has nothing to do with closed systems and everything to do with security.


And Microsoft, who I like, have app signing by choice but just because an app is signed doesn't mean it won't crash. The signing, the certificates can all be faked. Again, it's just a way for Apple to keep in control and make more money from developers.
Delusional Logic
level0
Posts: 4
Joined: Tue Nov 29, 2011 11:43 pm

Postby Delusional Logic » Sun Sep 30, 2012 11:56 pm

People say that linux is signing? i would not call chmod signing, it's simply giving users priviliges to execute (or read/write) a file.

I do not like signing apps, i do not like the buisness of doing such things, and i am glad that i switched to linux on my laptop (my desktop is for gaming, and steam isn't on linux... YET)
dragonmantank
level0
Posts: 3
Joined: Wed Sep 26, 2012 7:53 pm

Postby dragonmantank » Mon Oct 01, 2012 2:22 am

Delusional Logic wrote:People say that linux is signing? i would not call chmod signing, it's simply giving users priviliges to execute (or read/write) a file.

I do not like signing apps, i do not like the buisness of doing such things, and i am glad that i switched to linux on my laptop (my desktop is for gaming, and steam isn't on linux... YET)


No, when you install something from the package manager, you generally get a signed key and hashes are compared to make sure that the file you are downloading matches what the server expects. What you are talking about has nothing to do with signing.

This is different than what MS wants to do with certification (which means the app has passed a series of tests and shouldn't randomly crash or cause problems with Windows 8) or Gatekeeper (which means that the actual binary hasn't been modified). There are some signing implementations for Linux but it's not widely used.
User avatar
xyzyxx
level5
level5
Posts: 3790
Joined: Wed Jul 02, 2003 7:50 pm
Location: Iowa, USA
Contact:

Postby xyzyxx » Mon Oct 01, 2012 3:29 am

I for one am looking forward to Windows 8). Windows 8, not so much.
Some people talk because they have something to say. Others talk because they have to say something.
Userbla
level0
Posts: 8
Joined: Wed Sep 26, 2012 7:12 pm

Postby Userbla » Tue Oct 02, 2012 8:15 pm

I actually made a huge mistake in my original post. You can get a Mac developer signing certificate for *free*.

Return to “Community Members”

Who is online

Users browsing this forum: No registered users and 15 guests