(twitter.com)

2603 points mattsolle | 1 comments | 12 Nov 20 21:00 UTC | HN request time: 1.544s | source

Show context

_qulr ◴[12 Nov 20 21:47 UTC] No.25075533[source]▶

OCSP is Online Certificate Status Protocol. The connection to ocsp.apple.com is checking the status of the certificate used to code sign the launching app.

I wrote an article about this a couple weeks ago because of the temporary revocation of HP's signing cert for printer drivers on the Mac:

https://lapcatsoftware.com/articles/revocation.html

replies(2): >>25076660 #>>25078432 #

nomel ◴[12 Nov 20 23:18 UTC] No.25076660[source]▶

>>25075533 #

So is checking for security certificates good or bad, now?

replies(2): >>25077088 #>>25089781 #

1. juliend2 ◴[14 Nov 20 02:32 UTC] No.25089781[source]▶

>>25076660 #

Since this check is currently done _unencrypted_ (as lapcatsoftware said in his post), I'd say it's objectively bad.

↑

macOS unable to open any non-Apple application