Ok, so Ive been lurking/back for a few months now, but I've been reading about sandboxing and some of the pain/pleasure that it intends to provide. I too worried that this is Apple trying to "backdoor" a lockdown like IOS has.
From what I see, it looks like Apple has pushed back the "drop dead" date on sandboxing because of many of the complaints that developers have had.
It also looks like they saw
Wil Shipley's blog post from last year and took much of that to heart.
So far it seems like folks are going to be able to choose a setting that either:
a) allows Any App from anywhere to install, you're on your own.
b) allows Any "signed" app from any accredited developer in the AppStore (even if the app itself is NOT on the app store)
c) allows ONLY apps from the Appstore to run.
The default setting? (drumroll please)
B
I think that's the best scenario we could have.
If I want to run "absolutely anything" ala Android "snake pit" then I can toggle that setting, and off I go.
If I want to have some security, but I still have some apps that don't need to be or cannot be (API access, low level kernel code, etc) on the App Store, I can.
If I want my grandmother to be completely secure (ala IOS Store) I can do that as well.
If a developer puts out "malware" on a signed App, Apple can kill their signature and boom, that malware fades into obscurity, only running on the 1% of computers that are "wide open". And they can "disable" that developer, which is also a pretty big stick for developers to behave.
Morg "I can be safe *and* my senior citizen Aunt can be safe? I'm in!" anti
