![]() Like all good command line tools, you can even feed pkgutil wildcards to easily check multiple packages at the same time, in this example we’ll check the signature of every *.pkg file contained within ~/Downloads: ![]() If a package file is dubious, you can verify the code signature and extract the package without installing it with pkgutil to give it a further inspection, or if you prefer to use the GUI then an app like Pacifist offers similar package management tools in a friendlier interface, even if it’s still on the advanced side of things. Package "MysterySketchyInstaller-21.pkg": Pkgutil -check-signature ~/Downloads/MysterySketchyInstaller-21.pkg if you don’t trust the source, perhaps reconsider using it). For example, this example package installer file has no signature, and should be treated appropriately (i.e. Not all package installers have signatures however, and while any software update file from Apple will, packages from third parties often do not. In this case, the signature for the update package has expired, meaning it will throw an error if usage is attempted. ![]() Status: signed by a certificate that has since expired Pkgutil -check-signature ~/Downloads/OSXUpdateCombo10.10.2.pkg Hit return and you’ll find out if the signature is valid, if the signature has expired, or if there is no signature at all.įor example, let’s say we have an Mac OS X Combo Update software installer package, a common scenario for sysadmins updating multiple Macs, you could check the status of that packages signature like so: Pkgutil -check-signature /Path/to/Example.pkg The basic syntax to use for checking a package signature status is like so: It’s easy to use, so launch the Terminal app from /Applications/Utilities/ and try it out yourself. The excellent pkgutil command line utility can easily determine the status of any package signature and certificate. How to Check Package Signature Status in Mac OS X with pkgutil To avoid this situation, you can check package signatures yourself to see if they are valid, if they have expired, or even if they have no signature at all.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |