Archive for category: AFP548 Site News

You’ve read the Mule, you’ve read Ars, and folks like Mactracker have gone out and moved their feed to https like good citizens. But what about those old, abandoned apps we still want to keep using? Well, this is why it’s called risk management and not fire-proofing. Just like physical […]

SetupAssistant.app has many fun hidden dot files in /var/db/ and Pepijn Bruienne (@bruienne) has found another good one: /var/db/.MBSkipWiFiSetupIfPossible This dot file will make SetupAssistant skip the WiFi setup portion of the setup in some cases. Only 10.11 and higher will respect this dot file. For SetupAssistant to skip the […]

It’s great to be back. You’re not deceived, this is the AFP548 Podcast feed, but we’re piggybacking on it with a new title and format. If you’d like to submit art for our new branding, please let us know through the channels discussed in the episode. (Thanks to Graham Gilbert […]

Just for those that didn’t see this: https://blog.malwarebytes.org/news/2015/11/has-macupdate-fallen-to-the-adware-plague/ $ strings /Volumes/MacUpdate\ Installer/MacUpdate\ Installer.app/Contents/bin/AssetsChanger | grep browser 18BrowserTools_Opera 19BrowserTools_Safari 19BrowserTools_Chrome MacUpdate has decided to sell out their good name and lie down with the scummiest hijackers on the internet by allowing downloads to be delivered as an app instead of the […]

As if you haven’t heard, there’s something new this month to cause drama on the Apple upgrade treadmill (just as nefarious as Slack dragging everyone’s communication watering hole into the future). This time it’s the coming System Integrity Protection and other tightening restrictions we’re all dealing with. I wanted to […]

As part of a security initiative to make distinct firmware passwords per machine and escrow them to Crypt’s newly distinct ‘secrets’ database table, I came up with the idea to make an analogue to the Password Assistant you see in Keychain Access or the Accounts pane of System Preferences. And […]

Just a quick link to (your friend and mine) Shea ‘G’ Craig’s blog for an update about the new Thunderstrike patches that came down with 10.10.4, head over there for the skinny. Two notes, if you don’t have a local Reposado server downloading pkgs, here’s the link on Apple’s WAN […]

It’s been a long-standing goal of mine to help people get started making their own recipes for autopkg, which was recently spurred on by revisiting my previously-discussed recipeGenerationUtils. The autopkg wiki can only be so instructive on the process besides some general guidelines, so I thought I’d expand on some points here, while […]

Once again donning the yellow jersey, Charles Edge returns to reverse-interview Pepijn Bruienne, recorded back at the turn of the year. We’re so happy to have Charles back with his new role at Bushel, mostly because we can finally drag out the ‘scrum masters’ tag again. Lovingly polished by the awesome Aaron Lippincott, […]

In a previous post, I showed how to use Munki with Puppet SSL Client certificates in a Docker image. In that example, the Puppetmaster image is set to automatically sign all certificate requests. Good for testing, but not a good idea for production use. Instead, we should look into Puppet […]