22july2013

About

Username
22july2013
Joined
Visits
146
Last Active
Roles
member
Points
7,544
Badges
2
Posts
3,844

Reactions

4.5KLike119Dislike423Informative

  • UK launching investigation of Apple App Store after anti-competition complaints

    22july201322july2013
    crowley said:
    And please please please can you just read the damn Apple Developer page about notarization instead of asking me incessant questions that Apple themselves answer very clearly.   For the third time: Notarizing macOS Software Before Distribution | Apple Developer Documentation
    I did read the page, briefly, but it's about macOS. I thought the entire article was about the iOS App Store. I just went back to the original article and it didn't say macOS or iOS by name, although it did mention iPhones, so maybe that's why I thought this was all about the iOS App Store. Is this the source of our entire debate today? That would be a shame.
    tiredskills

  • UK launching investigation of Apple App Store after anti-competition complaints

    22july201322july2013
    crowley said:
    crowley said:
    I absolutely did answer that, and you replied to my answer.  For the avoidance of any doubt, the answer was:
    For the same reason they do it for Mac apps that aren't sold through the Mac App Store; it is in Apple's interest for their operating system to prevent unsafe software from running, whatever it's source, as to do otherwise would muddy the platform, reflect badly on Apple, and be bad for their customers.
    That's not an answer because signing those apps provides no security for the reasons I provided. Apple has no information about the app, so there's no reason to sign it. What does Apple have, the NAME of the app? They don't have much more than that. They submission was made to the third party app store, and at no point did you say the third party app store has to submit any data back to Apple to get the notarization. If you explain what information has to be sent to Apple, THEN you would be answering my question.
    What?

    The developer sends the app to Apple.  Notarization is code review, and Apple has all the information they need about the app.  How on earth do you suppose Apple would check for malicious code without having the code?  I'll post the link again because you clearly didn't even click it last time: Notarizing macOS Software Before Distribution | Apple Developer Documentation

    I've already said all of this, but you aren't reading properly, even when I repeat myself:
    crowley said:

    The question is already answered, I dealt with it in my first reply: "Apple, obviously". Developers submit apps to Apple for notarization, Apple notarizes them (or not, as the case may be), and then the developer sells it themselves or through a third party app store. 

    Honestly dude, put a minute of effort into understanding what notarization is, it'll save both of us a lot of time.
    That page says "Notarization requires Xcode 10 or later" but iOS apps don't have to be written with Xcode. So this idea won't work. I thought you were talking about the revocation feature that works in iOS, which doesn't require notarization, so for that, I do apologize. But your idea doesn't work because Xcode isn't mandatory for iOS apps. For your idea to work, all developers would have to convert their code to Xcode, and that would probably be anti-competitive and illegal.
    tiredskills

  • UK launching investigation of Apple App Store after anti-competition complaints

    22july201322july2013
    crowley said:
    I absolutely did answer that, and you replied to my answer.  For the avoidance of any doubt, the answer was:
    For the same reason they do it for Mac apps that aren't sold through the Mac App Store; it is in Apple's interest for their operating system to prevent unsafe software from running, whatever it's source, as to do otherwise would muddy the platform, reflect badly on Apple, and be bad for their customers.
    That's not an answer because signing those apps provides no security for the reasons I provided. Apple has no information about the app, so there's no reason to sign it. What does Apple have, the NAME of the app? They don't have much more than that. They submission was made to the third party app store, and at no point did you say the third party app store has to submit any data back to Apple to get the notarization. If you explain what information has to be sent to Apple, THEN you would be answering my question.
    radarthekattiredskills