Category: Weekly News

Just a short news summary this week, as I am busy presenting today at MacSysAdmin in Gothenburg!

---

(Sponsor: SentinelOne)

Bloated Binaries | How to Detect and Analyze Large macOS Malware Files

Massive malware binaries are becoming more common on macOS and can cause problems for detection and analysis. Here’s how we can successfully deal with them.

Continue Reading here

---

If you would rather get the weekly newsletter by email, you can subscribe to the Scripting OS X Weekly Newsletter here!! (Same content, delivered to your Inbox once a week.)

📰News and Opinion

• Interview with HRTech – Tom Bridge
• Apple Memory Holes OCSP Preference – Michael Tsai
• iPhone 15 Pro Max Camera Review: Depth and Reach – Sebastiaan de With, Halide

⚙️macOS and iOS Updates

• Security content of iOS 17.0.3 and iPadOS 17.0.3

🔨Support and HowTos

• How to ‘clean’ install modern macOS – Howard Oakley
• On the topic of Slack & Slack EMM for BYO mobile devices – Dr. K
• How Apple Admins Name the Devices They Manage – Kandji Blog

🤖Scripting and Automation

• swiftDialog: Get the Exit Code of a Background Process – Trevor Sysock
• Removing Jamf Remote policies using an API script – Elliot Jordan
• Automating Munki with munki-promoter – Jacob Burley

🍏Apple Support

• Use Reactions, Presenter Overlay, and other effects when videoconferencing on Mac

♻️Updates and Releases

• SF Symbols 5
• JamfCheck v1.3
• SimpleMDM account-driven enrollment – SimpleMDM
• uberAgent 7.1
• LowProfile 4.0.1

🎧To Listen

• Just Us on Sonoma and iOS 17 – Mac Admins Podcast
• We’ve got 81 problems, but compliance isn’t one of them – Apple @ Work Podcast, 9to5Mac

🎈Just for Fun

• Autumn Leaves – Basic Apple Guy

📚Support

If you are enjoying what you are reading here, please spread the word and recommend it to another Mac Admin!

• Scripting OS X Weblog
• Weekly Email Newsletter (TinyLetter)
• Mastodon

Release week part 2! We got macOS Sonoma 14.0 release. If you were running the RC2, that is the same as the release. We also got the first round of iOS 17.1 and macOS Sonoma 14.1 betas! (It’ll be good to have the minor update numbers for iOS and macOS in sync for a change.

---

(Sponsor: Mosyle)

The only Apple Unified Platform for Business

Mosyle is the only solution that fully integrates Enhanced MDM, Endpoint Security, Internet Privacy & Security, Single Sign-On, and Application Management on a single Apple-only platform.

Click here to learn why Mosyle is all you need to work with Apple.

---

If you would rather get the weekly newsletter by email, you can subscribe to the Scripting OS X Weekly Newsletter here!! (Same content, delivered to your Inbox once a week.)

macOS Sonoma

• macOS Sonoma 14.0 (23A344): About, Developer Release Notes, Security, Enterprise
• How to upgrade to macOS Sonoma
• macOS Sonoma is compatible with these computers
• macOS User Guide for macOS Sonoma
• Safari 17.0: WebKit Features, Developer Release Notes, Security

Reviews

• macOS Sonoma: The MacStories Review – John Voorhees, MacStories
• macOS 14 Sonoma: The Ars Technica review – Andrew Cunningham, Ars Technica
• Apple has released macOS 14 Sonoma – Howard Oakley
• Sonoma in the Spotlight: What’s New and What’s Missing in macOS 14 – Phil Stokes, SentinelOne

MacAdmins

• Suspicious Package FAQ on strange dialogs in macOS Sonoma
• The Mac Hardware/Software Obsolescence Chart – Anthony Reimer
• Managing the “Click wallpaper to reveal desktop” setting in macOS Sonoma – Rich Trouton
• Xsan Ventura & Sonoma upgrade failures and a workaround using profile “Magic” – Eric Hemmeter
• Suppressing undesired local account password policy notifications on macOS Sonoma – Rich Trouton
• Enabling Touch ID for sudo in macOS Sonoma – Jacob Burley
• Retroactive Automated Device Enrollment in macOS Sonoma – Kevin M. Cox
• Do you use iCloud Drive? Are you intending to upgrade to Sonoma? – Howard Oakley

Security and Privacy

• Beyond the good ol’ LaunchAgents 32: Dock Tile Plugins – Csaba Fitzl
• macOS Service Management: The SMAppService API, Quick Notes – Csaba Fitzl

Support and HowTos

• Escrowing FileVault keys to MDM quickly after generation – Elliot Jordan

Scripting and Automation

• macOS Install History: PlistBuddy with Shell Scripts Part 2 – Trevor Sysock

Apple Support

• Charge and connect with the USB-C connector on your iPhone 15

Updates and Releases

• erase-install 31.0
• Jamf Compliance Editor 1.2.1
• What’s new in Microsoft Intune (2309) September edition – Ramya Chitrakar, Microsoft Intune Blog
• LowProfile 4.0
• AutoPkg 3.0 RC2
• super v4.0.0-beta3
• Setup Your Mac (1.13.0-b5) with SYM-Helper
• Latest Version of SoftRAID for Mac Adds Support for macOS Sonoma – OWC Blog

To Watch

• September 2023: MacAdmins Meeting Archived Presentations and Slides Online – Marriott Library, Apple Infrastructure

To Listen

• What’s new at Apple with Jeremy Butcher – Mac Admins Podcast
• What does a car need to know about your sex life? – Lock and Code, Malwarebytes Labs
• Why Macs are becoming the preferred platform for IT professionals – Apple @ Work Podcast, 9to5Mac
• Jamf at Black Hat and Security Trends Report – Jamf After Dark Podcast

Just for Fun

• Autumn Gradients – Basic Apple Guy

Support

If you are enjoying what you are reading here, please spread the word and recommend it to another Mac Admin!

• Scripting OS X Weblog
• Weekly Email Newsletter (TinyLetter)
• Mastodon

If you want to support me and this website even further, then consider buying one (or all) of my books. It’s like a subscription fee, but you also get a useful book or two extra!

• macOS Terminal and Shell
• Moving to zsh
• Packaging for Apple Administrators

The Apple event this week, brought the expected iPhone 15 and Apple Watch updates. You can read all about them on Apple’s event page and the usual suspects.

---

(Sponsor: Mosyle)

The only Apple Unified Platform for Business

Mosyle is the only solution that fully integrates Enhanced MDM, Endpoint Security, Internet Privacy & Security, Single Sign-On, and Application Management on a single Apple-only platform.

Click here to learn why Mosyle is all you need to work with Apple.

---

More importantly for Mac and iOS Admins: iOS 17, iPadOS 17, and watchOS 10 will be released September 18. macOS Sonoma 14.0 will be released September 26. This is four weeks earlier than the release of macOS Ventura. There were RC releases for all beta platforms this week.

JNUC is next week, safe travel and a fun conference for everyone who is going!

If you would rather get the weekly newsletter by email, you can subscribe to the Scripting OS X Weekly Newsletter here!! (Same content, delivered to your Inbox once a week.)

Focus

• Apple Event

News and Opinion

• Half of young women will leave their tech job by age 35, study finds – Erin Carson, CNET
• How quickly can Apple release a security update? – Howard Oakley
• Unexpected Moments – Tom Bridge
• Thunderbolt 5 is Officially on the Way. How the Best Port is Getting Even Better – Wayne G, OWC Blog

macOS Sonoma and iOS 17

• New Features available with macOS Sonoma (PDF)
• New Features available with iOS 17 (PDF)
• New Features available with iPadOS 17 (PDF)

macOS and iOS Updates

• Security content of macOS Monterey 12.6.9 (21G726)
• Security content of macOS Big Sur 11.7.10 (20G1427)
• Security content of iOS 15.7.9 and iPadOS 15.7.9
• Apple has released security updates to Big Sur and Monterey – Howard Oakley

Social Media

• David Nelson: “When reading what’s changed in the latest iPhone we tend to get comparisons to the immediate previous model. Not so helpful if you’re coming from a device that’s two or more years old. The “Compare iPhone Models” page helps. It includes devices all the way back to the iPhone 6 and the original SE. For example, I can see the weight and dimensions of my 12 Pro compared to a 15 Pro Max.

Security and Privacy

• macOS MetaStealer: New Family of Obfuscated Go Infostealers Spread in Targeted Attacks – Phil Stokes, SentinelOne
• iPhone 15 launch: Wonderlust scammers rear their heads – Christopher Boyd, Malwarebytes Labs

Support and HowTos

• Technical Paper: Device Compliance with Microsoft Intune and Jamf Pro – Jamf
• How to Upgrade macOS Using erase-install and Jamf Pro – HCS Technology Group
• Jamf Pro: Configure SMTP Server Integration with Microsoft 365 Per App Password – HCS Technology Group
• Upgrading your iPhone? Read this first – Pieter Arntz, Malwarebytes Labs
• Why cloning a System volume isn’t a good idea any more – Howard Oakley
• UseAdditionalHttpHeaders preference for MunkiReport 5.8.0 – Alan Siu

Scripting and Automation

• red5coder/jamf-return-to-service: Simple POC to demonstrate the Return to Service added to Jamf Pro 10.50
• Obtaining a Bearer Token Using API Role Authentication with Jamf – Lazy MacAdmin
• Automated Jamf Patch Workflows – Lazy Macadmin

Updates and Releases

• Privileges 1.5.4
• txhaflaire/JamfCheck: A native SwiftUI macOS application that check’s Jamf Pro, Jamf Connect and Jamf Protect on it’s state
• Introducing iMazing 3 (Mac Beta)

To Listen

• GitHub Actions and Automating MDM Infrastructure – Mac Admins Podcast
• Unpacking Black Hat and the Security Findings Report – Jamf After Dark
• The future of mobile payments? – Apple @ Work Podcast, 9to5Mac

Support

If you are enjoying what you are reading here, please spread the word and recommend it to another Mac Admin!

• Scripting OS X Weblog
• Weekly Email Newsletter (TinyLetter)
• Mastodon

If you want to support me and this website even further, then consider buying one (or all) of my books. It’s like a subscription fee, but you also get a useful book or two extra!

• macOS Terminal and Shell
• Moving to zsh
• Packaging for Apple Administrators

The news summary is back! And right in time for the Apple event next week (Tuesday, Sep 12, 10am PDT)! This is a big heavy summary to catch up on the last eight weeks. If you believe I missed something, let me know and I will add it next week.

---

(Sponsor: Mosyle)

The only Apple Unified Platform for Business

Mosyle is the only solution that fully integrates Enhanced MDM, Endpoint Security, Internet Privacy & Security, Single Sign-On, and Application Management on a single Apple-only platform.

Click here to learn why Mosyle is all you need to work with Apple.

---

We got macOS 13.5 and iOS 16.6 right at the beginning of the break and a few security updates since then. The macOS Sonoma beta is on the seventh incarnation, iOS 17 and watchOS on the eighth, and, oddly, tvOS is on the ninth.

But aside from the betas and looming system releases, there were many updates for popular MacAdmins tools and software. I myself used the break to write up a few tutorials that have been rattling around in my head for a while.

We have three more big MacAdmin conferences this year: Jamf Nation User Conference (JNUC) in Austin, Texas, USA, Sep 19–21, MacSysAdmin in Göteborg, Sweden, Oct 3–6 and Objective-by-the-Sea 6.0, in Spain, Oct 9–13.

This year, I will be presenting at MacSysAdmin in Göteborg! I have the closing session on Friday, and will be talking about “MacAdmin Tools” so do not leave early. If you are there, too, be sure to say ‘Hi!’ and you will be rewarded with with some Scripting OS X stickers.

Eight weeks of summer hiatus was a long time. There were several scheduling requirements that lead to the long break this year. I plan to organize this differently next year.

If you would rather get the weekly newsletter by email, you can subscribe to the Scripting OS X Weekly Newsletter here!! (Same content, delivered to your Inbox once a week.)

News and Opinion

• One Mac Admin’s tips on maintaining a popular Open Source project – Graham R. Pugh
• Jamf announces its acquisition of dataJAR, a leading Apple – Jamf
• Time (For You) To Give A Presentation! – Pam Lefkowitz, Radical Admin Blog
• Facebook Says Apple is Too Powerful. They’re Right. – Cory Doctorow, Electronic Frontier Foundation
• ‘Windows is a declining ecosystem,’ Jamf CEO says – Jonny Evans, Computerworld
• You Decided to Change Platforms: Now What? – Pam Lefkowitz, Radical Admin Blog
• Backblaze Drive Stats for Q2 2023 – Andy Klein, Backblaze
• Positive Changes to Apple Business Manager Signup Flows! – Tom Bridge
• Coming Soon: Platform SSO for macOS – Brian Melton-Grace, Microsoft Community Hub
• Survey: Why Apple Is Booming in the Enterprise – Kandji Blog
• The Mac Admins Community Groups Map – Dr. K

macOS Sonoma and iOS 17

• Why it is Finally Time to use Managed Apple IDs for Work – Jordan Miller
• An Alerting Vista of Sonoma – Craig Hockenberry
• Uncovering weaknesses in Apple macOS and VMWare vCenter: 12 vulnerabilities in RPC implementation – Aleksandar Nikolic, Dimitrios Tatsis, Talos
• Auditd: the logs we need, not the logs we deserve – Bob Gendler
• Testing…123…Testing – Pam Lefkowitz, Radical Admin Blog

macOS and iOS Updates

• macOS Ventura 13.5 and iOS 16.6 – Armin Briegel
• macOS Ventura 13.5.2 (22G91): About, Security
• About the security content of iOS 16.6.1 and iPadOS 16.6.1
• About the security content of watchOS 9.6.2
• Apple has released Ventura 13.5.2, an urgent security update – Howard Oakley
• macOS Ventura 13.5.2 Update (22G91) What’s New? – Mr. Macintosh

Social Media

• Aaron on X: “New in macOS Sonoma: You can now use one Mac to revive or restore another Mac that’s in DFU mode right from Finder. Previously you needed to install Apple Configurator to do this but now it’s built in! Accidentally stumbled upon this while playing around with some stuff.”

Security and Privacy

• BlueNoroff: How DPRK’s macOS RustBucket Seeks to Evade Analysis and Detection – Phil Stokes, SentinelOne
• Demo: Brute-forcing a macOS user’s real name from a browser using mDNS – Konstantin Darutkin
• ShadowVault is the latest Mac data-stealer malware, reportedly – Joshua Long, The Mac Security Blog
• Security Update: June 20 Incident Details and Remediation – Bob Phan, JumpCloud
• JumpCloud Intrusion: Attacker Infrastructure Links Compromise to North Korean APT Activity -– Tom Hegel, SentinelOne
• Apple Crimeware: Massive Rust Infostealer Campaign Aiming for macOS Sonoma Ahead of Public Release – Phil Stokes, SentinelOne
• An Apple Malware-Flagging Tool Is ‘Trivially’ Easy to Bypass – Lily Hay Newman, Wired
• Jamf Threat Labs explains their discovery of a post-exploit UI hack of Airplane Mode – Jamf Threat Labs
• XLoader’s Latest Trick: New macOS Variant Disguised as Signed OfficeNote App – Dinesh Devadoss and Phil Stokes, SentinelOne
• Bypassing App Management With TextEdit – Michael Tsai
• Bloated Binaries: How to Detect and Analyze Large macOS Malware Files – Phil Stokes, SentinelOne
• Mac users targeted in new malvertising campaign delivering Atomic Stealer –  Jérôme Segura, MalwwarebytesLabs
• AI and Cybersecurity: What You Need to Know – Kandji Blog

Support and HowTos

• Git Commit Template – Clayton Burlison
• Disabling in-app review requests for apps installed from the macOS App Store – Rich Trouton
• Signing PowerShell Scripts on macOS – John C. Welch
• Gather logs with a Munki NoPkg – Kevin M. Cox
• How to Configure Escrow Buddy to Escrow a FileVault Personal Recovery Key (PRK) in Jamf Pro – HCS Technology Group
• How to turn off Activation Lock – Andrea Pepper, SimpleMDM
• RAID and macOS – Scripting OS X
• My AutoPkg Authoring Enviroment – Anthony Reimer
• Moving a user’s home or CloudStorage wants a lot of space – Eric Hemmeter
• Secure Token, Bootstrap Token, and Mac Security: How They Fit Together – Mike Boylan, Kandji
• macOS Screenshots during Setup Assistant – Jim Zajkowski
• Managing login mechanisms in the macOS authorization database – Elliot Jordan
• Finding Balance While Working Remotely – Mike Solin
• Using patch title policies + installers for different architectures – Dr. K
• What are configuration profiles? – Andrea Pepper, SimpleMDM
• LAPS Enhancements and Changes to the UIE Management Account – Tom Koehler, Jamf Tech Thoughts
• What is the Mac Evaluation Utility tool? – Jonny Evans, Computerworld
• How to build a custom macOS VM on Apple silicon – Howard Oakley
• Notes on Jamf Pro API Roles and Clients – Bryson Tyrell
• mg Text Editor – Michael Tsai
• How to Configure Account Driven Enrollment and Enroll a Personal Device in Jamf Pro – HCS Technology Group
• A Guide to Installing and Using Pantone Connect in Adobe Creative Cloud – HCS Technology Group
• Starting a sole proprietorship business to get a DUNS number for Apple Business Manager – Rich Trouton
• Jamf Protect integrates with Microsoft Sentinel – Thijs Xhaflaire
• Apple Configurator: No Space Left on Device — Mac Lovin’
• Handling a QR Code on your iPhone – Steve Hayman
• Apple Silicon and Virtual Machines: Beating the 2 VM Limit – Mykola Grymalyuk
• Jamf Pro: Organization – Rob J Schroeder

Scripting and Automation

• PowerShell version of Rich Trouton’s “Listing and downloading available macOS installers…” script – John C. Welch
• dhcav/ShortcutsForJamfPro: A collection of Shortcuts for iOS, iPadOS, macOS and even watchOS to be used with Jamf Pro
• Exploring Unicode in macOS with clui – Joel Bruner
• Intune Uploader – Tobias Almen
• Deploying Xcode on managed devices – Armin Briegel, Jamf Blog
• Jamf Pro LAPS: Retrieving Password via Terminal – Dan K. Snelson
• Generation gap: Using Shortcuts with Folder Actions – Jason Snell, Six Colors
• Build a macOS Application to Run a Shell Command with Xcode and SwiftUI: Part 2 – Armin Briegel
• Updating management status in Jamf Pro computer inventory records on Jamf Pro 10.49.0 and later – Rich Trouton
• Unmanage mobile devices & computers in Jamf Pro – Smashism
• Introduction to Shell Scripting – HCS Technology Group
• Build a notarized package with a Swift Package Manager executable – Armin Briegel
• Introducing JCDS 2.0 for uploading packages to Jamf Pro Cloud distribution points – Graham R. Pugh
• Working with osquery Data in Snowflake – t-lark.github.io
• notverypc/AutoPromo: Promote apps in a munki repo
• Removing Oracle Java from macOS – Rich Trouton
• Blocking Oracle Java Rich Trouton
• Jamf Pro: Get Mac Warranty Information – Rob J Schroeder
• khronokernel/py_sip_xnu: Python module for querying SIP status on XNU-based systems

Updates and Releases

• Jamf Pro 10.50.0
• Passkeys Public Beta – GitHub Blog
• SimpleMDM introduces scheduled scripts and auto attributes – SimpleMDM
• jeremybessard/sumb: Scheduled Updates Menu Bar
• Munki 6.3.3 Release (signed and notarized)
• jessepeterson/kmfddm v0.4.1
• Support 2.5
• MDS 5 Administrator Guide – Twocanoes Software
• swiftDialog v2.3.2 (v2.3 release notes)
• AutoPkg 3.0 RC1
• Setup Your Mac (1.12.6) via swiftDialog (2.3.2) – Dan K. Snelson
• facebookincubator/sado: A macOS signed-app shim for running daemons with reliable capabilities
• Visual Studio for Mac Retirement Announcement – Anthony Cangialosi, Visual Studio Blog (Don’t panic! This is NOT Visual Studio Code but the “Visual Studio for Mac IDE”)
• mac-ibm-notifications 3.0.3
• Baseline 1.3 Beta1
• Outset 4.0.4
• Mist 0.9.1
• erase-install 30.2
• Script2Pkg 1.1.1
• Mac Admins Open Source announces Jamf Pro SDK for Python – Nate Walck, MacAdmins.org

To Watch

• MacAD.UK 2023 Videos
• PSU MacAdmins Conference 2023 Videos
• August 2023: MacAdmins Meeting Archived Presentations and Slides Online – Marriott Library, Apple Infrastructure

To Listen

• Interview With Mr. Macintosh of MrMacintosh.com – Command-Control-Power
• Support App continues to be a must-have with latest 2.5 release – Apple@Work Podcast, 9to5Mac
• HomeKit Panel Part 2 – Mac Admins Podcast
• An influx of Elons, a hospital visit, and magic men Lock and Code S04E18

Just for Fun

• macOS Tiger: Aqua Redux – Basic Apple Guy
• Rancho at Night – Basic Apple Guy

Support

If you are enjoying what you are reading here, please spread the word and recommend it to another Mac Admin!

• Scripting OS X Weblog
• Weekly Email Newsletter (TinyLetter)
• Mastodon

If you want to support me and this website even further, then consider buying one (or all) of my books. It’s like a subscription fee, but you also get a useful book or two extra!

• macOS Terminal and Shell
• Moving to zsh
• Packaging for Apple Administrators

We got the third set of betas for macOS Sonoma and iOS 17 this week. I hope your testing is going well. Mine actually is, so far.

---

(Sponsor: Mosyle)

The only Apple Unified Platform for Business

Mosyle is the only solution that fully integrates Enhanced MDM, Endpoint Security, Internet Privacy & Security, Single Sign-On, and Application Management on a single Apple-only platform.

Click here to learn why Mosyle is all you need to work with Apple.

---

Summer is in full swing and the number of posts and articles is declining as people are taking well deserved breaks. This means that this news summary will also go on summer break. It will return on September 9, with a large summary of what happened over the summer, just in time for the final stretch of beta releases and testing before the Fall releases.

That doesn’t mean you won’t hear anything from me. I am planning to use the time to write and finish a few articles that I have been tinkering with and work on some other projects that I have been mulling about. If something really interesting happens that is relevant to MacAdmins I will post about it.

I also plan to post and re-share interesting links on my Mastodon account. With all the turbulence in the social media space, that is the service I am using most right now. There is a nicely sized community of MacAdmins and related experts in the Fediverse now. I will also be (as always) active on the MacAdmins Slack.

I hope you get to enjoy a well-deserved break or at least a bit of a quieter time. See you in September!

If you would rather get the weekly newsletter by email, you can subscribe to the Scripting OS X Weekly Newsletter here!! (Same content, delivered to your Inbox once a week.)

Security and Privacy

• JokerSpy: Unknown Adversary Targeting Organizations with Multi-Stage macOS Malware – Phil Stokes, SentinelOne
• BlueNoroff: How DPRK’s macOS RustBucket Seeks to Evade Analysis and Detection – Phil Stokes, SentinelOne

Support and HowTos

• How macOS installers changed – Howard Oakley
• How to Identify and Eliminate Abusive Web Notifications – Adam Engst, TidBITS
• How to diagnose and control login and background items – Howard Oakley
• The journey to Munki and Intune – Tobias Almen
• What is iOS Kiosk Mode? – Andrea Pepper, SimpleMDM
• How to get the right app to open a document and fix LaunchServices problems – Howard Oakley
• Jamf Pro Framework Not Installing or Redeploying – Isaac Ordonez
• macOS Screenshots mini-game easymode – Jim Zajkowski

Scripting and Automation

• Listing and downloading available macOS installers using Apple’s softwareupdate tool – Rich Trouton
• AzureAD/Apple-SSO-Tools: Apple Enterprise SSO troubleshooting script
• Swift mountshare command line tool – Erik Hemmeter

Updates and Releases

• OWC launches MacDrive 11 to bring APFS support to Windows – Andrew O’Hara, AppleInsider

To Listen

• Operating Systems for Businesses (Part 2) – Mac Admins Podcast
• Virtualization in the age of Apple Silicon – Apple @ Work Podcast, 9to5Mac
• WWDC 2023 Recap – Jamf After Dark
• Of sharks, surveillance, and spied on emails – Lock and Code, Malwarebytes Labs

Just for Fun

• Touch Grass – Basic Apple Guy

Support

If you are enjoying what you are reading here, please spread the word and recommend it to another Mac Admin!

• Scripting OS X Weblog
• Weekly Email Newsletter (TinyLetter)
• Mastodon

If you want to support me and this website even further, then consider buying one (or all) of my books. It’s like a subscription fee, but you also get a useful book or two extra!

• macOS Terminal and Shell
• Moving to zsh
• Packaging for Apple Administrators

The year is already half over. Summer is in full swing in the northern hemisphere. Nevertheless, MacAdmins everywhere are very busy publishing their wonderful work, in blog posts, GitHub repos, and at conferences and meetings. Several interesting posts and updates this week, thank you all!

---

(Sponsor: Mosyle)

The only Apple Unified Platform for Business

Mosyle is the only solution that fully integrates Enhanced MDM, Endpoint Security, Internet Privacy & Security, Single Sign-On, and Application Management on a single Apple-only platform.

Click here to learn why Mosyle is all you need to work with Apple.

---

If you would rather get the weekly newsletter by email, you can subscribe to the Scripting OS X Weekly Newsletter here!! (Same content, delivered to your Inbox once a week.)

News and Opinion

• The risks of relying on Generative AI when writing scripts – Graham Gilbert (My thoughts)
• MacDevOps YVR 2023 conference recap – Andrea Pepper, SimpleMDM

Security and Privacy

• Mac Endpoint Security: What Mac Admins Need to Know – Sid Roper, Kandji Blog

Support and HowTos

• Booting into macOS Recovery in UTM on Apple Silicon Macs – Rich Trouton
• Use Jamf Pro to Deploy iOS App to Mac with Apple Silicon – HCS Technology Group
• How to Setup a Federated Connection to Apple Business Manager – HCS Technology Group
• How to Setup and Use 1Password for Two-Factor Authentication – HCS Technology Group
• Manually triggering MDM profile renewal with Jamf Pro – Rich Trouton
• Jamf Connect and interrupted authentications in Azure AD Sign-in Logs – Frederick Abeloos
• Baseline: How to Deploy With Your MDM – Trevor Sysock
• Jamf Connect and Offline MFA – Frederick Abeloos

Scripting and Automation

• ehemmete/mountshare: A Swift command line tool to mount network shares
• Advanced macOS Commands – saurabhs.org
• almenscorner/intune-uploader: Set of AutoPkg processors for uploading to Intune
• Monitoring and killing smbd – Eric Hemmeter

Updates and Releases

• Script2Pkg 1.1.0
• Munki 6.3.2 (notarized)
• erase-install 30.0
• macOS Security Compliance Project, updated Guidance revisions
• Mist 0.9

To Watch

• MacAdmins Meeting Archived: June 2023 – Marriott Library, Apple Infrastructure

To Listen

• Vision Pro Panel with Bryson & Rich – Mac Admins Podcast
• Best of CCP 257: Interview With Lucas Acosta, CEO of Foojee Consultants in Atlanta, Georgia – Command-Control-Power
• What’s new for Apple IT admins? – Apple @ Work Podcast, 9to5Mac

Just for Fun

• M2 Ultra Minimal Wallpaper – Basic Apple Guy

Support

If you are enjoying what you are reading here, please spread the word and recommend it to another Mac Admin!

• Scripting OS X Weblog
• Weekly Email Newsletter (TinyLetter)
• Mastodon

If you want to support me and this website even further, then consider buying one (or all) of my books. It’s like a subscription fee, but you also get a useful book or two extra!

• macOS Terminal and Shell
• Moving to zsh
• Packaging for Apple Administrators

Busy week with a surprise security update for most Apple platforms, beta 2 for macOS Sonoma, iOS and all their siblings and beta for Xcode 15 with a brand new SDK for visionOS 1.0, which means that you can start building apps for visionOS and play around with visionOS in the simulator…

---

(Sponsor: Mosyle)

The only Apple Unified Platform for Business

Mosyle is the only solution that fully integrates Enhanced MDM, Endpoint Security, Internet Privacy & Security, Single Sign-On, and Application Management on a single Apple-only platform.

Click here to learn why Mosyle is all you need to work with Apple.

---

If you would rather get the weekly newsletter by email, you can subscribe to the Scripting OS X Weekly Newsletter here!! (Same content, delivered to your Inbox once a week.)

News and Opinion

• On mental health and the importance of community – Dmitri Atum
• Mosyle using AI to generate ready-to-use scripts for Apple Device Management using natural language – Bradley Chambers, 9to5Mac (Press release)
• New Packaging features on the Adobe Admin Console – Sonam Monga, Adobe Support Community
• JNUC 2023 Session Catalog – Jamf
• Cisco’s Mac choice scheme confirms Apple’s future in enterprise tech – Jonny Evans, Computerworld

visionOS 1.0

These links lead to various pages on Apple’s Developer site and are targeted towards that audience and not admins. Nevertheless, I believe they may contain interesting bits for all Apple users.

• Discover visionOS – Apple Developer
• Designing for visionOS – Human Interface Guidelines
• visionOS –  Apple Developer Documentation
• Xcode 15 Beta 2 Release Notes

macOS and iOS Updates

• macOS Ventura 13.4.1 (22F82): What’s New, Security
• macOS Monterey 12.6.7 (21G651): Security
• macOS Big Sur 11.7.8 (20G1351): Security
• iOS and iPadOS 16.5.1: Security
• iOS and iPadOS 15.7.7: Security
• watchOS 9.5.2: Security
• watchOS 8.8.1: Security
• Safari 16.5.1 (for Big Sur and Monterey): Security
• Apple has released macOS Ventura 13.4.1, Monterey 12.6.7 and Big Sur 11.7.8 updates – Howard Oakley
• macOS Ventura 13.4.1 Update (22F82) – Mr. Macintosh

Security and Privacy

• Fragments of Cross-Platform Backdoor Hint at Larger Mac OS Attack – Andrei Lapusneanu, Bogdan Botezatu, Bitdefender

Support and HowTos

• MunkiReport, Python 3 and PHP 8 – Kevin M. Cox
• What works in virtualising macOS on Apple silicon, and what doesn’t – Howard Oakley

Scripting and Automation

• Keyboard Setup Assistant, YubiKeys and a Munki NoPkg – Kevin M. Cox

Updates and Releases

• MunkiReport 5.8.0

To Listen

• Managing Macs Like We Manage Code – Mac Admins Podcast
• Moose Blows Up! — Command-Control-Power
• What’s new for Apple IT admins? – Apple @ Work Podcast, 9to5Mac
• Jamf solutions in the education space – Jamf After Dark
• Why businesses need a disinformation defense plan, with Lisa Kaplan – Lock and Code, Malwarebytes Labs

Just for Fun

• Happy Birthday, Charlie Root (and Jamf)! – Will Smith, Jamf Tech Thoughts

Support

If you are enjoying what you are reading here, please spread the word and recommend it to another Mac Admin!

• Scripting OS X Weblog
• Weekly Email Newsletter (TinyLetter)
• Mastodon

If you want to support me and this website even further, then consider buying one (or all) of my books. It’s like a subscription fee, but you also get a useful book or two extra!

• macOS Terminal and Shell
• Moving to zsh
• Packaging for Apple Administrators

I am still catching up on WWDC videos and processing all the news. But overall it is looking like the system upgrades for this Fall are going to substantial improvements with regards to managing Apple devices.

We also got a new round oof betas for macOS 13.5 and iOS 16.6 this week.

---

(Sponsor: Mosyle)

The only Apple Unified Platform for Business

Mosyle is the only solution that fully integrates Enhanced MDM, Endpoint Security, Internet Privacy & Security, Single Sign-On, and Application Management on a single Apple-only platform.

Click here to learn why Mosyle is all you need to work with Apple.

---

If you would rather get the weekly newsletter by email, you can subscribe to the Scripting OS X Weekly Newsletter here!! (Same content, delivered to your Inbox once a week.)

macOS Sonoma and iOS 17

• Bastion in defence of Sonoma security – Howard Oakley
• Web Apps on macOS Sonoma 14 Beta – Thomas Steiner
• Beta to the Max! – Ecco_Luke, Jamf Tech Thoughts
• WWDC 2023 Review Part 1 – Mobile Jon
• Virtualising macOS on Apple silicon Macs: Viable beta 8 – Howard Oakley
• WWDC 2023: Changes Coming to Apple Device Enrollment – Kandji Blog

Social Media

• Ricky Mondello on Hachyderm.io: “The feature that allows you to share passkeys and passwords in iOS 17 and macOS Sonoma is not at all limited to families. You can set up shared groups with any collection of close contacts. And you can set up as many groups as you’d like.”

Support and HowTos

• 20 popular open-source tools for MacAdmins – Andrea Pepper, SimpleMDM Blog (via MatX)
• Enabling macOS betas with a Munki NoPkg – Kevin M. Cox

Scripting and Automation

• JAWA Adventures Part 2 – The Geeky Gordo
• m3ir/jamf-connect-unmigration: Unmigrate Jamf connect from a Local user
• AWS VPN diagnostics with a Munki NoPkg – Kevin M. Cox

Apple Support

• Pages 13.1: Mac, iOS, iCloud
• Keynote 13.1: Mac, iOS, iCloud
• Numbers 13.0: Mac, iOS, iCloud

Updates and Releases

• kmfddm v0.3.1
• Escrowing new FileVault keys to MDM without password prompts – Elliot Jordan (GitHub Repo)
• Escrow Buddy: An open-source tool from Netflix for remediation of missing FileVault keys in MDM – Netflix Technology Blog
• Jamf Pro 10.47
• App Installers Now Deploy to Self Service – Haddayr Copley-Woods, Jamf Blog
• Mist 0.8.1

To Watch

• June 2023, MacAdmins Meeting – Marriott Library, Apple Infrastructure

To Listen

• Mat Pullen and Suraj Mohandas – Jamf After Dark
• My Precious – Command-Control-Power
• TC Niedzialkowski on CISOs and MacAdmins – Mac Admins Podcast
• Declarative MDO with Joel Rennich – MacDevOpsYVR
• Special Edition: WWDC 2023 – Jamf After Dark

Support

If you are enjoying what you are reading here, please spread the word and recommend it to another Mac Admin!

• Scripting OS X Weblog
• Weekly Email Newsletter (TinyLetter)
• Mastodon

If you want to support me and this website even further, then consider buying one (or all) of my books. It’s like a subscription fee, but you also get a useful book or two extra!

• macOS Terminal and Shell
• Moving to zsh
• Packaging for Apple Administrators

Wow, what a week!

---

(Sponsor: vast limits)

Provide productive AND secure digital employee experiences

uberAgent is an innovative digital employee experience monitoring and endpoint security analytics product for macOS and Windows. uberAgent helps enterprise IT provide fast, reliable, and secure devices & applications that boost employee productivity while strengthening cybersecurity. Try for yourself and get your free 100-user community license at uberagent.com.

---

If you think your company or product is a good fit to sponsor this newsletter, please contact me!

If you would rather get the weekly newsletter by email, you can subscribe to the Scripting OS X Weekly Newsletter here!! (Same content, delivered to your Inbox once a week.)

WWDC 2023

WWDC 23 is on and started with an amazing keynote. When they introduce three new Mac models, including the new Apple silicon based Mac Pro in the first 20 minutes, then you know it’s going to be in for quite ride. After 80 minutes, there was a moment where it wasn’t quite certain there was going to be a “One more thing…” and I thought I would have been happy if they had stopped there. New Macs, Apple silicon transition completed, many good new features for macOS, iOS, and watchOS.

But they didn’t stop and introduced the ‘Vision Pro,’ which is neither a ‘VR’ nor a ‘AR headset’, but a ‘spatial computer’ with a ‘spatial operating system.’ Whatever Apple calls it, this was the preview, mainly for the developers and it will not be available until next year and even then only in the US, so I will take my time until I make my judgement about this. This opinion is a step up from my former opinion of any VR/AR/spatial computer from Apple (or anyone), which can only be described as ‘indifferent.’

The potential of the Vision Pro and concept of ‘spatial computing’ seems great. The question whether Apple can achieve that potential remains. The price point and limited availability are clear signs that Apple is aware that this platform is maybe ‘not quite ready yet.’ But other platforms, like the Apple TV, iPhone, iPad, Apple Watch, and back in the day, even the Mac and the first PowerBooks took a few years to really find and define their purpose, too.

Sessions for MacAdmins

Apple has released more than 170 sessions for WWDC. Most of those sessions are focused on developers and not people who manage and deploy Macs and other Apple devices. Here is a list of sessions that I think MacAdmins should watch.

• Keynote
• Platforms State of the Union

If you haven’t seen either of these, you really should. They give an excellent overview of what Apple thinks is relevant for the upcoming platforms. You might have other priorities, and that is fair, but getting the overview picture and an impression of where Apple is heading is important.

Don’t miss this

Always a great overview of what is will happen for Mac and iOS management. Covers many topics that don’t quite merit their own session.

• What’s new in managing Apple devices

Business & Education

Apple has a “Business & Education” topic in the developer app. These will be in-depth explanations of some specific new features.

• Explore advances in declarative device management
• Deploy passkeys at work
• Do more with Managed Apple IDs
• Meet device management for Apple Watch (Fri, June 9)

Other interesting sessions

While these sessions will likely be very focused on developer topics, they often contain interesting explanations of how to use and sometimes how to manage these features.

• What’s new in Xcode
• What’s new in web apps
• What’s new in privacy
• Ready, Set, Relay: Protect app traffic with network relays
• Discover Continuity Camera for tvOS

And now, on to the news…

Apple devices

• Apple Vision Pro
• MacBook Air 15-inch with M2
• Mac Studio with M2 Max and Ultra
• Mac Pro with M2 Ultra

macOS Sonoma and iOS 17

• macOS Sonoma Preview
• iOS 17 Preview
• iPadOS 17 Preview
• watchOS 10 Preview
• WebKit Features in Safari 17 beta – WebKit Blog
• What’s new in Apple platform deployment (Document revision history)

Community

• Apple platform deployment: Accessing the latest version when your locale is neither en-ca or en-us – Ben Toms
• macOS 14 Sonoma support – Howard Oakley
• iOS 17 lets us use Shortcuts to get Wi-Fi information – #WiFi
• macOS Sonoma Full Installer Database – Mr. Macintosh
• laurentpertois/Sonoma-Compatibility-Checker
• WWDC 2023 Links – Michael Tsai
• Apple Makes Developer Betas Free to Download and Install – Juli Clover, MacRumors
• All the features Apple didn’t mention in its WWDC 2023 keynote – Wes Davis, The Verge
• WWDC 2023 notes – Rich Trouton
• macOS 14 Sonoma: Toughening up macOS for the Enterprise? – Phil Stokes, SentinelOne
• Apple WWDC 2023: The Future of Apple Device Management – Kandji Blog
• Platform enhancements to help Apple win the enterprise – Michael Devins, Jamf Blog
• Vision Pro Redux – John C. Welch
• How to run a macOS beta on Apple silicon – Howard Oakley

News and Opinion

• Mac Admins Foundation Announces Recipients of Community and Conference Grant – Tom Bridge, MacAdmins.org
• Being an Ally in the Office – Pam Lefkowitz, Radical Admin Blog, Jumpcloud

Social Media

• mikeymikey: “open 'x-apple.systempreferences:com.apple.Software-Update-Settings.extension?action=showBetaUpdates'” (Thread)

Security and Privacy

• Guide for Apple IT: Security Features Built into macOS – David Larrea, Kandji Blog

Support and HowTos

• Make Your Presentation Move – Will Smith, Jamf Tech Thoughts
• Moving Munki Middleware to the Cloud – Jacob Burley

Scripting and Automation

• Cache Me Out 1.0 – HCS Technology Group

Apple Support

• Use more than one version of macOS on a Mac (Not new, but relevant)

Updates and Releases

• Jamf Compliance Editor 1.1.5
• erase-install 29.2
• kmfddm v0.3.0
• Jamf Connect 2.24.0
• swiftDialog v2.2.1
• Mist 0.7
• iMazing 2.17 + Sneak Peek at 3

To Listen

• MacAD.UK Panel 2023 – Mac Admins Podcast
• Interview With Jason Dettbarn, Founder & CEO of Addigy – Command-Control-Power
• Hey let’s get ready for MacDevOps – MacDevOpsYVR
• Flashcast 11: WWDC 2023 – Mac Admins Podcast

Just for Fun

• Saltern by Night – Basic Apple Guy

Support

If you are enjoying what you are reading here, please spread the word and recommend it to another Mac Admin!

• Scripting OS X Weblog
• Weekly Email Newsletter (TinyLetter)
• Mastodon

If you want to support me and this website even further, then consider buying one (or all) of my books. It’s like a subscription fee, but you also get a useful book or two extra!

• macOS Terminal and Shell
• Moving to zsh
• Packaging for Apple Administrators