Post

Replies

Boosts

Views

Activity

How to configurable endpoint security message deadline value by which app should respond?
As enterprise endpoint security/data loss prevention application, we need to detect data which is being transferred out of the enterprise context from their MacOS filesystem through applications like Cloud Sync or Email. Depending on the file content, type and size, we require some time for scanning the content being sent. This can range from milli seconds to few minutes for very large contents. But the Endpoint Security message has to be responded within the provided message deadline else application will be killed. This deadline is reducing with every macos release and its now only 15 seconds on macos sonoma which is blocking our use case of completing the scan before responding. We may scan it before but it imposes challenges of the data being modified before actual sent. So, we have to scan it on the fly and cant rely solely on the previous scans. Is there any way an Enterprise can customize this deadline value depending on the ES message and scanning application may be through MDM setting?
1
1
783
Mar ’24
You cant open the application because it is not supported on this type of Mac
I have an application which is designed to launch only with root user. It has permission 0555 for all the users. Owner is root and group is wheel. Also, the app is signed and notarized properly. We install this app on user machine using pkg installer. I dont see any gatekeeper issues or quarantine flag. Apps works fine as intened but still we get app error as "You cant open the application because it is not supported on this type of Mac". The same app stops displaying that error in the following scenarios: App is copied and pasted. In this case the app owner is changed to user context. App permission are changed Please suggest.
10
0
1.2k
Jan ’22