Mike Hearn [ARCHIVE] on Nostr: 📅 Original date posted:2012-07-29 📝 Original message:MacOS X 10.8 makes ...
📅 Original date posted:2012-07-29
📝 Original message:MacOS X 10.8 makes application signing borderline mandatory, in that
you cannot run unsigned apps unless you tweak your settings via the
control panel. You must sign with a certificate issued by Apple via
their "identified developer" program.
Windows allows but does not require signing. However, anti-virus
systems tend to use signers with good reputation as a whitelisting
signal. Signing Bitcoin releases makes sense because it may lead to,
at minimum, higher performance if AV engines ignore file reads/writes
by Bitcoin. And it can also shield us from false positives. You only
need to see the mess that the mining tools world has become to
understand why this is important.
As I don't take part in the release process, I can't help out with
this directly, but I believe it's important and would be willing to
throw some money in towards buying the signing certs for both
platforms. I guess Gavin would be the final signer.
Published at
2023-06-07 10:26:19Event JSON
{
"id": "e9e3ae05e5904999ba25634c3af6df468d3dbcad258d9ffc901fae0e2e596e54",
"pubkey": "f2c95df3766562e3b96b79a0254881c59e8639f23987846961cf55412a77f6f2",
"created_at": 1686133579,
"kind": 1,
"tags": [
[
"e",
"c6def5c4a468c5862b50bf38d8d5bee63aae07d9582588c6e7650c5126dce88d",
"",
"reply"
],
[
"p",
"a23dbf6c6cc83e14cc3df4e56cc71845f611908084cfe620e83e40c06ccdd3d0"
]
],
"content": "📅 Original date posted:2012-07-29\n📝 Original message:MacOS X 10.8 makes application signing borderline mandatory, in that\nyou cannot run unsigned apps unless you tweak your settings via the\ncontrol panel. You must sign with a certificate issued by Apple via\ntheir \"identified developer\" program.\n\nWindows allows but does not require signing. However, anti-virus\nsystems tend to use signers with good reputation as a whitelisting\nsignal. Signing Bitcoin releases makes sense because it may lead to,\nat minimum, higher performance if AV engines ignore file reads/writes\nby Bitcoin. And it can also shield us from false positives. You only\nneed to see the mess that the mining tools world has become to\nunderstand why this is important.\n\nAs I don't take part in the release process, I can't help out with\nthis directly, but I believe it's important and would be willing to\nthrow some money in towards buying the signing certs for both\nplatforms. I guess Gavin would be the final signer.",
"sig": "ad6ecc195de42eef6bf57377f21da38c3192fd8e50b44912052377b31e970c33a3b2fee9ce4bbb87e2dc838387d4872ab23093694297474d72178568801e5884"
}