by jdlshore on 4/26/21, 8:05 PM
Fascinating article. Short version: there was a bug in the part of Apple’s Gatekeeper code that checked whether a file was an application bundle. Bundles that only contained a script, and not a plist file, were considered “not a bundle,” and this bypasses the Gatekeeper checks.
The issue is fixed in the latest version of Big Sur. Be sure to upgrade. It’s being exploited in the wild.
by smoldesu on 4/26/21, 6:40 PM
Gatekeeper is one of the most frustrating things I have to fight whenever I try using MacOS. It feels like DRM for my applications, which in turn makes everything feel clunkier, and less integrated. I would genuinely pay Apple extra for a version of MacOS that just trusts me and lets me install what I want without the some esoteric mechanism stopping me at every step of the way...
by pehtis on 4/26/21, 7:19 PM
I will never understand why "Show all filename extensions" is unchecked by default in Finder.
by kossTKR on 4/26/21, 6:58 PM
Does anyone know how trustworthy this objective-see project is?
I remember once installing several of his apps, but then coming to the conclusion that i don't know enough - even though he consistently seems to find and fix flaws in OSX.
Why isn't Apple hiring this man?
EDIT: Why are people downvoting this question? If i'm implying something then i'm unaware of it.
by aledalgrande on 4/26/21, 8:42 PM
by lilyball on 4/27/21, 2:33 AM
I’m really disappointed that this blog post didn’t dive into why the bug vanishes with SIP disabled.
by tehwebguy on 4/27/21, 10:08 AM
Does this mean we can trick Big Sur into not treating TypeScript files like DVD rips?
by sharikone on 4/27/21, 12:13 AM
I feel that macOS has slowly become a mess. From Lion, more or less.
Overcomplicated and bloated security features, telemetry, iOSification of the UI, dumbed down settings, bugs..
Perhaps the time has come to shed some legacy and restart again from scratch (like Google Fuchsia) or to invest some of the hundreds of billions they have in refining the software so it actually works
by zanethomas on 4/26/21, 10:49 PM
nice!!!
by pier25 on 4/26/21, 7:28 PM
Did Apple finally fix the bug where every Big Sur update nukes Xcode tools like Git?
by Quiark on 4/27/21, 1:41 AM
Somehow none of this is applied to packaged shell script into an .app which runs on double-click with no message whatsoever. Malware doesn't always have to be a binary...