Forums
New posts
Articles
Product Reviews
Policies
FAQ
Log in
Register
What's new
Search
Search
Search titles only
By:
New posts
Menu
Log in
Register
Install the app
Install
Forums
General Discussions
Security Awareness
MacOS runs a signed executable that was tampered
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="gil_mo" data-source="post: 1748267" data-attributes="member: 175879"><p>My Sierra MacOS agrees to run a signed executable that has been tampered. I checked the file using:</p><p></p><p><strong>codesign --verify (...)</strong></p><p></p><p>And got:</p><p></p><p><strong>invalid signature (code or signature have been modified) (...)</strong></p><p></p><p>The tampered app worked correctly in both "App Store" and "App Store and identified developers" settings.</p><p></p><p>This means that anyone can take a signed app and implant a virus before spreading it worldwide.</p><p></p><p>Am I missing something?</p><p>Thanks,</p><p>Gil.</p></blockquote><p></p>
[QUOTE="gil_mo, post: 1748267, member: 175879"] My Sierra MacOS agrees to run a signed executable that has been tampered. I checked the file using: [B]codesign --verify (...)[/B] And got: [B]invalid signature (code or signature have been modified) (...)[/B] The tampered app worked correctly in both "App Store" and "App Store and identified developers" settings. This means that anyone can take a signed app and implant a virus before spreading it worldwide. Am I missing something? Thanks, Gil. [/QUOTE]
Verification
Post reply
Forums
General Discussions
Security Awareness
MacOS runs a signed executable that was tampered
Top