macOS gatekeeper and file quarantine bypass

Fascinating article. Short version: there was a bug in the part of Apple’s Gatekeeper code that checked whether a file was an application bundle. Bundles that only contained a script, and not a plist file, were considered “not a bundle,” and this bypasses the Gatekeeper checks.<p>The issue is fixed in the latest version of Big Sur. Be sure to upgrade. It’s being exploited in the wild.

Gatekeeper is one of the most frustrating things I have to fight whenever I try using MacOS. It feels like DRM for my applications, which in turn makes everything feel clunkier, and less integrated. I would genuinely pay Apple extra for a version of MacOS that just trusts me and lets me install what I want without the some esoteric mechanism stopping me at every step of the way...

I will never understand why &quot;Show all filename extensions&quot; is unchecked by default in Finder.

Does anyone know how trustworthy this objective-see project is?<p>I remember once installing several of his apps, but then coming to the conclusion that i don&#x27;t know enough - even though he consistently seems to find and fix flaws in OSX.<p>Why isn&#x27;t Apple hiring this man?<p>EDIT: Why are people downvoting this question? If i&#x27;m implying something then i&#x27;m unaware of it.

Is it me or Apple isn&#x27;t even listing the patch in the 11.3 changelog? <a href="https:&#x2F;&#x2F;developer.apple.com&#x2F;documentation&#x2F;macos-release-notes&#x2F;macos-big-sur-11_3-release-notes" rel="nofollow">https:&#x2F;&#x2F;developer.apple.com&#x2F;documentation&#x2F;macos-release-note...</a>

I’m really disappointed that this blog post didn’t dive into why the bug vanishes with SIP disabled.

Does this mean we can trick Big Sur into not treating TypeScript files like DVD rips?

I feel that macOS has slowly become a mess. From Lion, more or less.<p>Overcomplicated and bloated security features, telemetry, iOSification of the UI, dumbed down settings, bugs..<p>Perhaps the time has come to shed some legacy and restart again from scratch (like Google Fuchsia) or to invest some of the hundreds of billions they have in refining the software so it actually works

nice!!!

Did Apple finally fix the bug where every Big Sur update nukes Xcode tools like Git?

Somehow none of this is applied to packaged shell script into an .app which runs on double-click with no message whatsoever. Malware doesn&#x27;t always have to be a binary...