On Thu, Nov 8, 2012 at 9:53 PM, Ammon Riley <[email protected]> wrote: > On Wed, Nov 7, 2012 at 11:31 PM, Ivan Tarozzi <[email protected]> wrote: >> Il 08/11/2012 05:57, [email protected] ha scritto: >>> On Thu, Nov 8, 2012 at 5:49 PM, johannes hanika<[email protected]> wrote: >>>> On Thu, Nov 8, 2012 at 5:30 PM,<[email protected]> wrote: >>>>> Finally, we have got the 1.1rc1 dmg image. Thanks heaps! However at >>>>> the moment, OS X complains that it is not digitally signed for the >>>>> gatekeeper mechanism. We all know what darktable is, and it is safe, >>>>> but for many photographers who are less computer-savvy than us, would >>>>> this warning scare them from using darktable on OS X? > [...] >> Is not a problem (i think) about 99$, is a problem about development >> freedom. If I need to pay to develope "for you", and you can accept or >> reject my work in your app-store (rumors, not personal experience) is >> not a way i like. > > I agree on the philosophy, but a minor nit-pick regarding the app-store > bit... > > Digitally signing the .dmg is a separate issue from selling on Apple's > app store. Recent versions of OS X have "the Gatekeeper", which > is a security setting that controls what applications can be run and > installed. Signing the DT images, regardless of whether or not it's > distributed through the App Store raises the trust level up a notch. > > http://support.apple.com/kb/HT5290 > > In theory, it's a good idea. Looking over at the apple docs for > signing, it appears that this can be done without paying for an > Apple dev ID: > > http://developer.apple.com/library/mac/#documentation/Security/Conceptual/CodeSigningGuide/Procedures/Procedures.html > > In particular, the section that reads: > > Note: Apple uses the industry-standard form and format of > code signing certificates. Therefore, if your company already > has a third-party signing identity that you use to sign code > on other systems, you can use it with the OS X codesign > command. Similarly, if your company is a certificate issuing > authority, contact your IT department to find out how to get > a signing certificate issued by your company. > > On the topic of putting the dmg on the mac app store, I'd be for it. > I'd also be in support of charging money for it, if the funds generated > from sales are directed to general DT development. I can't speak to > the legal issues about either putting an open-source app on the app > store, or charging money for it. >
Thanks heaps for clarifying this issue. So at the moment, all we need to do is to use the codesign command to sign the darktable.app, in a similar fashion of how debian packages are signed, right? Then we can worry about putting the app on appstore as a completely separate issue to be dealt with in the future. I am really glad to see that we can work out the gatekeeper issue without spending money...... ------------------------------------------------------------------------------ Everyone hates slow websites. So do we. Make your web apps faster with AppDynamics Download AppDynamics Lite for free today: http://p.sf.net/sfu/appdyn_d2d_nov _______________________________________________ darktable-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/darktable-devel
