Mastodawn

@tuckerjj @dmoren I get it, but Ed would probably acknowledge that the world ended up being good, he just missed his own personal accomplishment.

@stuart Haven't and can't really imagine we would

@peternlewis Not sure how you got that read, but absolutely not. They are committed to allowing non-Notarized apps forever. But they have made it hard to run non-Notarized apps so that it's harder to socially engineer the launch of malware.

RE: https://zeppelin.flights/@incomparable/116579441294367934

Erika Ensign 2d ago

The awards reading this year is ... less to my taste than usual (so far)

@lapcatsoftware I think you are reading "make it harder for users" instead of "make it harder (for users) to install malware" - if malware gets placed in a higher-security bin, it is fundamentally harder for users to install malware.

@lapcatsoftware When Apple added notarization, one feature of the scanning process was to detect known malware and refuse to notarize those apps. Since (some?) malware would fail notarization, those authors would need to have users jump through increasingly complex hoops to launch those apps.

I'm sorry it doesn't sound right. I think that may be because of your unique perspective and knowledge of the details, but I was trying to boil it down to a sentence.

@lapcatsoftware regarding your second point: you're right, it's only a mandatory sync change for users who actually sync. If you don't sync your keys they won't change syncing methods, because there are no syncing methods. I have made a wording change there to make it less prone to misinterpretation.