Will, can you please elaborate on your ideas? Basically, if i launch my application (it is a simple binary, not even an .app bundle) normally from Terminal - I only get the firewall popup once. Later if i start my app again - it is already added to the firewall's exception list (because the user presses "Allow" or "deny" button on that firewall popup), so the popup doesn't show anymore.
But if I use launchd to start my process, I am getting this popup every time the system loads. Note, the application doesn't require any admin privileges - basically it is a simple web server, and I start it as a regular Launch Agent (not Launch Daemon). Its plist file is located in $HOME/Library/LaunchAgents. This is just a random guess, but perhaps I need to specify some ports in the agent's plist file? Why in the world firewall ignores its Allow setting for my process in its rules, and keeps popping up the alert upon system boot? I would appreciate any comments. Thanks. Nick 2015-09-13 20:40 GMT+03:00 <dangerwillrobinsondan...@gmail.com>: > Does it maybe require the privileged helper dance with SMJobBless ? > > Sent from my iPhone > > On Sep 14, 2015, at 2:29 AM, Nick <eveningn...@gmail.com> wrote: > > Okay, so now the behavior is really strange. > > I have a LaunchAgent, that acts as a web server, so it holds open a > specific port and should accept incoming connections on that port. The > agent is set to RunAtLoad=True, so it starts up whenever the OS X starts up. > > When I reboot the machine, a firewall popup (like this: > http://i.stack.imgur.com/5x54f.png) shows up. > > This is normal and expected. > > So I select "Allow", the application works fine. > > Then I reboot the system. And this pop up shows up again. This is weird, > because in System Preferences => Security & Privacy => "Firewall" I can see > my application, and it is set to "Allow incoming connections". But every > time I restart my mac, I am getting this firewall popup window, which is > annoying. > > Is there any way to get rid of this "Allow incoming connections?" pop up, > once the user selected "Allow" for a launch agent? > > Here's the plist for the launch agent: > > <?xml version="1.0" encoding="UTF-8"?> > <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" " > http://www.apple.com/DTDs/PropertyList-1.0.dtd";> > <plist version="1.0"> > <dict> > <key>Label</key> > <string>com.my.WebServer</string> > <key>ProgramArguments</key> > <array> > <string>/bin/sh</string> > <string>-c</string> > <string>exec "$HOME/Library/Application > Support/com.my.WebServer/WebServer"</string> > </array> > <key>RunAtLoad</key> > <true/> > </dict> > </plist> > > Thank you > > 2015-09-13 18:56 GMT+03:00 Nick <eveningn...@gmail.com>: > >> Hello >> Does the process started using launchd (its plist is located at >> ~/Library/LaunchAgents/), that opens ports for listening, require explicit >> adding to the firewall exceptions? >> >> When the user starts an application from terminal a window pops up, >> asking whether to allow this process to accept incoming connections - and >> if allowed, an entry is added to System Preferences => Firewall exceptions. >> >> However when i start my process by calling >> launchctl start ~/Library/LaunchAgents/com.my.launchagent.plist >> the window doesn't pop up. >> >> Thanks, >> > > _______________________________________________ > Do not post admin requests to the list. They will be ignored. > Macnetworkprog mailing list (Macnetworkprog@lists.apple.com) > Help/Unsubscribe/Update your Subscription: > > https://lists.apple.com/mailman/options/macnetworkprog/dangerwillrobinsondanger%40gmail.com > > This email sent to dangerwillrobinsondan...@gmail.com > >
_______________________________________________ Do not post admin requests to the list. They will be ignored. Macnetworkprog mailing list (Macnetworkprog@lists.apple.com) Help/Unsubscribe/Update your Subscription: https://lists.apple.com/mailman/options/macnetworkprog/archive%40mail-archive.com This email sent to arch...@mail-archive.com
