https://solarana.dev/tags/code-signing/ Recent content in code signing on Madison's Blog Hugo -- gohugo.io en-us Sun, 20 Jan 2019 09:00:00 -0600 https://solarana.dev/2019/01/20/breaking-code-signing-via-ssh/ Sun, 20 Jan 2019 09:00:00 -0600 https://solarana.dev/2019/01/20/breaking-code-signing-via-ssh/ Ok, so the title is a bit misleading. Code signing wasn’t broken by SSH itself, it was the keychain interactions that occur when using SSH, but some context is needed. When you sign into the developer portal in Xcode, Xcode stores two items in the keychain that allows developer tools to access the developer portal on your behalf: Xcode-Token & Xcode-AlternateDSID. Prior to Xcode 9.3, these items were stored in the normal login keychain.