Hacker News new | past | comments | ask | show | jobs | submit login

> This check contains some sort of unique string about the app being opened,

It's not unique to the app, the article is just wrong. It's unique to the /developer/, which is much less specific.




Yeah, no. This is a stupid argument. If you’re opening an app signed by Mozilla Corporation it’s probably Firefox. If you’re opening an app from [porn app publisher] guess what, it’s a porn app. Nobody cares which one.


The difference is that it happens much less often because it's cached.


Again, how does this help the "I opened app from porn developer now my computer broadcasts that I did that" case?


I just checked my Steam library and none of them use codesigning so I guess that solves that. Video playing apps do though, so depends on plausible deniability.

It does seem like this could be fixed using the private relay system. It certainly doesn't need to be unencrypted.


Who would run the intermediate hop, though? Other Macs?


Randomly selected CDN companies.

https://security.apple.com/documentation/private-cloud-compu...


I guess it would be nice if they added that then :)




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: