Channels
android_tests
apple-silicon
arm-architecture
auditing-warroom
aws
carving
code-review
community-feeds
core
darkbytes
doorman
ebpf
eclecticiq-polylogyx-extension
extensions
file-carving
fim
fleet
fleet-dev
fleetosquery
foundation
fuzzing
general
golang
goquery
infrastructure
jobs
kolide
linen-dev
linux
macos
officehours
osctrl
plugins
process-auditing
querycon
queryhub
random
selfgroup
sql
tls
uptycs
vendor-feeds
website
windows
zeek
zentral
zercurity
Title
s
seph
12/16/2019, 7:37 PMI’d suggest that someone else (I’ll volunteer) run the 4.1.2 build.
z
zwass
12/16/2019, 8:08 PMThis sounds like a great idea! Are there private keys or something that would prevent this?
s
seph
12/16/2019, 8:09 PMYes and no. The current osquery mac packaging is signed with Teddy’s personal key. Obviously I can’t sign it with that, but I can sign it with mine. But even knowing that we can get that far is progress.
Pretty suire we have some notes about other things. (like the s3 bucket credentials for releases)
g
Gavin
12/16/2019, 8:10 PMSigning with another key will mean that admins may need to Deploy a new TCC profile for FDA , worth mentioning in the release notes this is for Mojave / Catalina
s
seph
12/16/2019, 8:11 PMMy gut sense is that it’d be better to wait, but have the option.
g
Gavin
12/16/2019, 8:13 PMWorth chipping in some cash for an OSquery specific dev account and eating the pain once for the move to an organisation shared Cert ?
s
seph
12/16/2019, 8:15 PMI have been slowly working through https://github.com/osquery/foundation/issues/3
“get an apple developer account for osquery”
g
Gavin
12/16/2019, 8:17 PMHmm DUNs is a pita
s
seph
12/16/2019, 8:19 PMNah. It’s fine. Just lots of bits I had to work through