When my application passes Gatekeeper, all future downloads are not quarantined

Question

When my application passes Gatekeeper, all future downloads are not quarantined

I noticed that after my signed application was downloaded from the Internet and it goes through the GateKeeper receiver (that is, I click OK in the warning dialog box), it will never be quarantined again. In other words, subsequent downloads will not receive any warnings. Even if this is a new version of the application or even a completely different application, but signed with the same signature.

This may be due to what I saw as the GateKeeper system cache. And that could be user convenience. that is, the system now trusts my signature / certificate.

Questions:

Is this indicated correctly?
Is it possible to "clear" the cache or otherwise change my system so that I can see a new warning, as if this is the first time?

+3

security macos osx-gatekeeper

Will Feb 06 '14 at 21:32

source share

1 answer

bikram990 · Accepted Answer · 2014-02-26T04:42:49+0000

It is true that the OS X gatekeeper stores the cache. It provides a command line spctlto enable / disable applications. You can find the full documentation here on how to verify your code with the gatekeeper.

spctl --list --label "Developer ID"can be used to view all signed applications, and then you can disable the applications (you must manually identify your application) with spctl --disable --label "Developer ID"or spctl --disable --rule <ruleNo>.

When my application passes Gatekeeper, all future downloads are not quarantined

More articles: