Menu
▾
▴
Re: [MACTCL] OSX 10.8 gatekeeper issue
|
From: Wojciech K. <woj...@ko...> - 2012-08-26 08:58:56
|
2012/8/23 Kevin Walzer <kw...@co...>: > If you decide to go the Developer ID route, it's not hard to sign an app > with your certificate--it can be done from the command line using the > "codesign" tool. Question about that part - were you able to sign a tclkit binary - i.e. one with actual binary data and VFS at the end? Maybe you are doing it differently than I am - and I have made something wrong. For me codesign rejected this, and what is more interesting (and scary), doing sdx mksplit, signing the head and packaging the binary back worked - so only the head (binary code) is signed and modifying VFS does not require signing again. That is fine since OSX accepts it, but it is scary since anyone grabbing my binary can modify VFS (i.e. throw in their application instead) and still ship it as signed by me. Again, I expect I am doing something wrong rather than signing the head only being the right way to go. |
