Apple aims to double down against malware on Mac with the upcoming macOS Sequoia update. As part of a security measure, Sequoia won’t let you perform Control-click on a DMG file to install apps that aren’t from the Mac App Store or certified developers. You have one less option to override the Gatekeeper Security on your Mac. This change applies to online Mac apps that aren’t signed or notarized through Apple’s vetted system for legitimate developers.
Gatekeeper on macOS: Things You Need to Know
On macOS, you get Gatekeeper and runtime protection as the security layers to ensure only trusted software runs on the Mac. Such trusted software is signed by the Apple Store or a registered developer, and Apple has also notarized it. So, it alerts you about possible security concerns when installing an app or a plugin downloaded from the web on macOS.
You must’ve noticed the security prompt when installing an app that you may have downloaded from outside the Mac App Store. That prompt requires you to navigate to System Settings > Privacy & Security, and you get a notification—the (app name) can’t be opened because it is from an unidentified developer. After that, you’ll need to click the Open Anyway button to install the app on your Mac.
Also Read: Everything You Need to Know About Samsung’s Auto Blocker on Galaxy Phones
Overriding Gatekeeper Becomes Harder
In theory, Gatekeeper prevents, rather than alerts, security mishaps that might happen if you install any third-party software after bypassing the security prompts. Some third-party apps may instruct you to download a ZIP or DMG file and install it using the Control-click option. That means you’ll need to hold down the Control key on the keyboard and click on the DMG file to install it. So the installation is easier than dragging and dropping the app package into the Application folder.
With macOS Sequoia, Apple will turn off the Control-click option to override Gatekeeper’s security prompt and prevent the installation of apps or plugins on Macs. At the same time, Gatekeeper isn’t exactly security scanner software but merely a layer to safeguard a Mac. The only thing you get on your Mac a prompt that states the app wasn’t opened since it wasn’t downloaded from the Mac App Store.
Theoretically, only developers and experts circumvent it by installing an app or plugin on macOS. You might end up compromising your Mac if you install random apps from sketchy sources. But, the ways to install to try out new or beta pps will be equally hard for budding developers, participating beta-testers for apps, and enthusiasts.
Half a Step With Security on macOS
Android phone users are familiar with the ‘Install from Unknown Sources’ option, which lets you install any .APK file procured outside the Google Play Store. Similar is the Gatekeeper and Runtime security mechanism, which ensures that apps are run only from the Mac App Store and from registered developers. The onus lies on us when choosing whether to install apps from unverified and uncertified sources. In retrospect, Apple’s new move only makes installing such apps tougher and doesn’t provide any security or sandboxing mechanism (which would be great) on the macOS.