1
0
mirror of https://github.com/PrivSec-dev/privsec.dev synced 2024-12-22 21:01:34 -05:00

add gatekeeper disclaimer

This commit is contained in:
fria 2024-11-26 07:41:08 -06:00 committed by GitHub
parent b41b6b761d
commit a78a75e176
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194

View File

@ -70,7 +70,9 @@ You will see `flags=0x10000(runtime)` if it's enabled.
## Gatekeeper ## Gatekeeper
[Gatekeeper](https://support.apple.com/guide/security/gatekeeper-and-runtime-protection-sec5599b66df/web) stops you from running apps that aren't notarized. Notarization is a process by which app developers submit their app to Apple to scan for malware and ensure it meets certain requirements. Among these are that it is signed with a key provided by Apple to the developer and that the Hardened Runtime is enabled. Gatekeeper also prevents the loading of unwanted plugins with benign apps by opening apps from randomized, read-only locations. [Gatekeeper](https://support.apple.com/guide/security/gatekeeper-and-runtime-protection-sec5599b66df/web) is meant to warn you about running apps that aren't notarized, however it relies on the quarantine attribute being added which won't work on filesystems that don't support it like FAT32. Gatekeeper shouldn't be relied on since it doesn't cover all software and there are ways of bypassing it.
Notarization is a process by which app developers submit their app to Apple to scan for malware and ensure it meets certain requirements. Among these are that it is signed with a key provided by Apple to the developer and that the Hardened Runtime is enabled. Gatekeeper also prevents the loading of unwanted plugins with benign apps by opening apps from randomized, read-only locations.
The Gatekeeper warning can be easily bypassed by going to **Privacy & Security** in the settings and clicking open. The Gatekeeper warning can be easily bypassed by going to **Privacy & Security** in the settings and clicking open.