From 6ed5b8ad19fd7006f0e87f2edcd0f47c1184ee49 Mon Sep 17 00:00:00 2001
From: kimg45 <138676274+kimg45@users.noreply.github.com>
Date: Wed, 14 Aug 2024 22:33:36 -0500
Subject: [PATCH] add gatekeeper settings

---
 content/posts/macos/macOS Security Overview.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/content/posts/macos/macOS Security Overview.md b/content/posts/macos/macOS Security Overview.md
index 3214000..a5af519 100644
--- a/content/posts/macos/macOS Security Overview.md	
+++ b/content/posts/macos/macOS Security Overview.md	
@@ -63,6 +63,8 @@ You will see `flags=0x10000(runtime)` if it's enabled.
 
 While the Gatekeeper warning can be easily bypassed by control + clicking on the app and clicking open, it's useful since it presents an unavoidable warning when you try to run an app for the first time that's not downloaded from the App Store.
 
+You can change [Gatekeeper settings](https://support.apple.com/en-us/102445) to only allow apps downloaded from the App Store if you choose. It will still be bypassable but it will stop apps from being run that aren't from the app store without you explicitly allowing it.
+
 ## Apps vs Other Executables
 
 Gatekeeper, the App Sandbox, and the Hardened Runtime only apply to apps and not other types of executable files, so when installing non-apps, you should be extremely careful. If possible, avoid installing non-app software altogether or install it in a virtual machine.