Forums
New posts
Articles
Product Reviews
Policies
FAQ
Log in
Register
What's new
Search
Search
Search titles only
By:
New posts
Menu
Log in
Register
Install the app
Install
Forums
General Discussions
Switcher Hangout (Windows to Mac)
Is there a way to disable the incessant password requirement?
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="vansmith" data-source="post: 1502159" data-attributes="member: 71075"><p>Why? I think you might be overestimating the capabilities of sandboxing. It's not bullet proof (in fact it can be easily circumvented as it was in <a href="http://apple.slashdot.org/story/11/11/13/2152232/mac-os-x-sandbox-security-hole-uncovered" target="_blank">2011</a> and <a href="http://www.macobserver.com/tmo/article/mac-app-stores-sandbox-loophole" target="_blank">2012</a>) and by no means offers protection against catastrophic failure. A more effective solution, and one that all browsers have now done, is process and plugin isolation.</p><p></p><p>They certainly do and Apple can be thanked for this. Since Apple limits the types of applications that can be put on the MAS and makes you pay to get a signed certificate, there will always be a glut of applications that require the "anywhere" permission. Although I don't represent the majority of independent developers, the software I make won't be going on the MAS nor will I pay Apple the $99 to gain the privilege of attaining a certificate.</p><p></p><p>This is nothing against Apple (until they remove the "anywhere" option) but rather to suggest that there will always be a group of people, and I'd say of a significant size, that need to install and run unsigned non-MAS software.</p></blockquote><p></p>
[QUOTE="vansmith, post: 1502159, member: 71075"] Why? I think you might be overestimating the capabilities of sandboxing. It's not bullet proof (in fact it can be easily circumvented as it was in [URL="http://apple.slashdot.org/story/11/11/13/2152232/mac-os-x-sandbox-security-hole-uncovered"]2011[/URL] and [URL="http://www.macobserver.com/tmo/article/mac-app-stores-sandbox-loophole"]2012[/URL]) and by no means offers protection against catastrophic failure. A more effective solution, and one that all browsers have now done, is process and plugin isolation. They certainly do and Apple can be thanked for this. Since Apple limits the types of applications that can be put on the MAS and makes you pay to get a signed certificate, there will always be a glut of applications that require the "anywhere" permission. Although I don't represent the majority of independent developers, the software I make won't be going on the MAS nor will I pay Apple the $99 to gain the privilege of attaining a certificate. This is nothing against Apple (until they remove the "anywhere" option) but rather to suggest that there will always be a group of people, and I'd say of a significant size, that need to install and run unsigned non-MAS software. [/QUOTE]
Verification
Post reply
Forums
General Discussions
Switcher Hangout (Windows to Mac)
Is there a way to disable the incessant password requirement?
Top