Search found 2 matches

by dunham
Tue Jun 12, 2018 8:02 pm
Forum: Little Snitch General
Topic: Ars: Hackers bypass 3rd-party signature checks - how is LS responding?
Replies: 3
Views: 1220

Re: Ars: Hackers bypass 3rd-party signature checks - how is LS responding?

This sounds like CVE-2018-10470, which was addressed in Little Snitch 4.1:

https://www.obdev.at/products/littlesni ... notes.html

(Unfortunately their fix seems to have broken my 32-bit Cisco VPN software, which does have a valid signature, according to codesign.)
by dunham
Tue Jun 12, 2018 6:48 pm
Forum: Little Snitch General
Topic: codesignature problem
Replies: 23
Views: 5479

Re: codesignature problem

This looks like a bug to me. I'm having the same issue with cisco vpn. It started with the 4.1 update and codesign says the signature is fine: $ codesign -vvv /opt/cisco/anyconnect/bin/vpnagentd /opt/cisco/anyconnect/bin/vpnagentd: valid on disk /opt/cisco/anyconnect/bin/vpnagentd: satisfies its Des...