Scripting OS X

Slowly emerging from the post-holiday and vacation swamp. CES was this, and even though Apple had no official presence, they did gather some headlines from smart TV support of AirPlay 2, HomeKit and iTunes videos. Also they got some attention for this banner ad.

If you would rather get the weekly newsletter by email, you can subscribe to the Scripting OS X Weekly Newsletter here!! (Same content, delivered to your Inbox once a week.)

News and Opinion

• OWC Acquires Akitio
• Best of 2018: the conferences – DAM SAN
• Best of 2018: FCPX and iMac Pro – DAM SAN
• New year, new GitHub: Announcing unlimited free private repos and unified Enterprise offering – The GitHub Blog

MacAdmins on Twitter

• Mac Mule: “TIL: https://help.apple.com/businessmanager/#/apd1d81e5169 The timescale for processing app licences depends on how many you purchase: 5,000 licences or less are processed straightaway. 5,001 to 19,999 licences are processed after 13:00 PST daily. 20,000 licences or more are processed after 16:00 PST daily.”
• Erik Gomez: “InstallEnterpriseApplication is broken and I’m really hoping Apple fixes this by 10.14.3, or the next few months are going to be extremely painful.”
• Kyle Crawford: “SecureToken is broken and I’m really hoping Apple fixes this by 10.14.3, or the next few months are going to be extremely painful.…”
• Eric Holtam: “softwareupdate is broken and I’m really hoping Apple fixes this by 10.14.3, or the next few months are going to be extremely painful.…”

Bugs and Security

• The Mac Malware of 2018 – Patrick Wardle

Support and HowTos

• Reaching Parity in Office for Mac – Adam Gold, WalmartLabs
• Disk Mount Conditioning In macOS – Charles Edge
• Adding a Command Line Tool Helper to a Mac App Store App – Tim Perfitt
• Git Quick-start – Charles Edge
• How To Quickly Open a Policy in Jamf Pro – Steve Wood
• Application Playpen – Providing “Adult Supervision” to Immature Applications – Marriott Library – Apple ITS
• Backup and Restore a Parallels VM Programmatically – Charles Edge
• Create a github.io page for your GitHub project – Charles Edge
• Howard Oakley has taken a deep dive on Links and Aliases in several posts on his Blog:
  • Aliases, hard links, symlinks, and copies in Mojave’s APFS
  • Links and aliases beyond local files: advanced file system techniques
  • Copies, clones, links and aliases: summary in tables – Howard Oakley
  • Inside Mojave’s Aliases and Bookmarks
  • Serious Finder bug in Mojave 10.14.2 with broken aliases
  • Aliases and Bookmarks are smarter than you think

Scripting and Automation

• Using AWS Lambda To Relay Jamf Pro Webhooks to Slack – Steve Wood
• Using BBEdit and Excel to revive a dead podcast feed – Jason Snell

Updates and Releases

• MacDeployStick 1.0.0
• Bash 5.0
• Packages 1.2.5

To Listen

• Jamf After Dark: Supporting the Impossible

Support

There are no ads on my webpage or this newsletter. If you are enjoying what you are reading here, please spread the word and recommend it to another Mac Admin!

• Weblog
• Weekly Email Newsletter (TinyLetter)
• Apple News
• Twitter
• Micro.blog
• Mastodon.social
• Facebook
• LinkedIn

If you want to support me and this website even further, then consider buying one (or all) of my books. It’s like a subscription fee, but you also get a useful book or two extra!

• ‘macOS Installation for Apple Administrators’
• ‘Property Lists, Preferences and Profiles for Apple Administrators’
• ‘Packaging for Apple Administrators’

Happy New Year!

2018 was certainly “interesting times.” I have the feeling 2019 will not dissappoint in this regard either.

While many admins seemed to enjoy just taking a week or two off, some took the time for some very interesting posts and projects.

If you would rather get the weekly newsletter by email, you can subscribe to the Scripting OS X Weekly Newsletter here!! (Same content, delivered to your Inbox once a week.)

News and Opinion

• My Must-Have Mac Apps, 2018 Edition – John Voorhees, MacStories
• Apple Admin Conferences – Charles Edge
• Why 2019 could be an enormous year of change for the Mac – Jason Snell, Macworld
• Last year’s hardware, next year’s promises – Howard Oakley
• 2018: Arbitrary Boundary Condition Met – Tom Bridge
• Letter from Tim Cook to Apple investors
• Happy 14th Birthday, krypted.com – Charles Edge

MacAdmins on Twitter

• Jamf: “In case you missed it: @MacTechConf is now in October and JNUC is in November. We’re working together and looking forward to sponsoring the event again in 2019!”
• MacDeployment YYC: “2019 Conf. Dates: @macaduk 26–27 March, London @acesconf June 4–6, Kansas City MO #MacDeploy June 10–11, Calgary @MacDevOpsYVR June 12–14, Vancouver @psumacconf July 9–12, State College PA MacSysAdmin 1–4 Oct., Göteborg @MacTechConf Oct. 15–18, L.A. JNUC Nov. 12–14, Minneapolis”
• Geert Barentsen: “2019 is the final year for Python 2. No bug or security patches will be applied to Python 2 beyond Jan 1st, 2020. Time to start using Python 3 only! pythonclock.org”
• Jason Broccardo: “Apple will upgrade system python sometime in 2020.… ”
• Joseph Chilcote: “More likely Apple will remove system python sometime in 2023.… ”

Bugs and Security

• How thoroughly does Gatekeeper check existing apps? – Howard Oakley
• Four months after its debut, sneaky Mac malware went undetected by AV providers – Dan Goodin, Ars Technica
• App signatures are always checked on launch, but serious errors may be ignored – Howard Oakley
• Update on identifying installed and uninstalled apps in iOS – Alexis Brignoni
• USB-C could soon offer protection against nefarious devices – Rachel England, Engadget

Support and HowTos

• How Mojave messes up printing – Howard Oakley
• Managing Firefox extensions via configuration profiles on macOS – Paul Galow
• Enable The Safari Debug Menu – Charles Edge
• Simple Stats in macOS – Charles Edge
• Setting up a new (or repurposed) Mac: 6 Fitting a quart into a pint pot – Howard Oakley
• Managing Osquery with Kolide Launcher and Fleet – Mike Arpaia, Kolide
• Disable Videos From Playing Automatically in Safari – Charles Edge
• Enabling automatic macOS software updates for OS X Yosemite through macOS Mojave – Rich Trouton
• AMFI: checking file integrity on your Mac – Howard Oakley
• How to build an APFS bootable clone in Terminal – Howard Oakley
• A Bit About Python Module Imports – Charles Edge
• Munki hacking for Fun – Bart Reardon
• Download Older Versions of macOS and Mac OS X – Charles Edge
• Setting up a new (or repurposed) Mac: 7 Choices diagrammed – Howard Oakley

Scripting and Automation

• Backing up macOS management policies from Jamf Pro – Rich Trouton
• Looping cURLy Braces – Charles Edge
• macos-scripts/signature_check Script to check signature of macOS Apps
• Programming Arduino Micro as a Arduino Automaton in Mac Deploy Stick – Tim Perfitt (Video)

Apple Support

• Privacy – Transparency Repor
• iCloud security overview (via Chris Miller)

Updates and Releases

• Mac Deploy Stick 0.9.4 (beta)
• Beta for Pythonista 3.3
• Munki 3.6.0 Developer Preview 4

To Watch

• Michael Lynn, Fact Finding – QueryCon 2018 (via @Kolideco)
• ‘From Apple Seeds to Apple Pie’ from Objective by the Sea – Sarah Edwards

To Listen

• Episode 106: MagentaGate, MacADUK, and MacMule.com – Mac Admins Podcast
• Episode 107: Sweet Rootkits, a Year in Review
• The Year in Mac and iOS Security – Intego Mac Podcast, Episode 63
• Jamf After Dark: Managed App Config

Support

There are no ads on my webpage or this newsletter. If you are enjoying what you are reading here, please spread the word and recommend it to another Mac Admin!

• Weblog
• Weekly Email Newsletter (TinyLetter)
• Apple News
• Twitter
• Micro.blog
• Mastodon.social
• Facebook
• LinkedIn

If you want to support me and this website even further, then consider buying one (or all) of my books. It’s like a subscription fee, but you also get a useful book or two extra!

• ‘macOS Installation for Apple Administrators’
• ‘Property Lists, Preferences and Profiles for Apple Administrators’
• ‘Packaging for Apple Administrators’

Welcome to the last news summary of 2018. I will be taking off next week for the holidays. I don’t expect much will happen, but if it does, you will see it the first news summary of the new year, on (or around) January 4, 2019.

This was the first full year of the News Summary. I wrote 49 summaries this year. The number of subscribers more than quadrupled, which is both exciting and humbling. I am too lazy to whip up a script to get an exact count but that adds up to about 1500 links to tweets, articles, updates and posts.

I merely gather all these links. The summary would not be possible without something to summarize. My never-ending gratitude goes out to all the people who generously share their expertise and time in all these posts, on the different fora, and in person.

Thank you for writing, and thank you all for reading!

I hope you all get to enjoy a break for the holidays and New Year.

Happy Holidays and all the best for the New Year!

News and Opinion

• Last Week on My Mac: What is Apple up to? – Howard Oakley
• Apple’s biggest misses of 2018 – Rene Ritchie, Vector (The title seems quite sensational, but this is a great summary.)
• App Store Now Allows Gifting IAPs – Michael Tsai

MacAdmins on Twitter

• Arek Dreyer: “macOS Support Essentials 10.14 Supporting and Troubleshooting macOS Mojave Exam Preparation Guide was posted! It’s posted at the bottom of the course description page, but here’s the direct link. https://training.apple.com/content/dam/appletraining/us/en/2018/documents/macOS_Support_Essentials_10_14_Exam_Preparation_Guide.pdf”
• Carl Ashley: “Dear macOS software devs. If you build apps that trigger user consent prompts – aka TCC, please thoroughly document ALL affected binaries with the file path & what PPPCP payloads are required to make the prompts go away. Make this info readily available. MacAdmins will love you.”

Bugs and Security

• On the First Day of APOLLO, My True Love Gave to Me – A Python Script – An Introduction to the Apple Pattern of Life Lazy Output’er (APOLLO) Blog Series — Sarah Edwards (Keep reading the blog for the rest of the series.)
• Mojave happily runs apps with revoked signatures, and more – Howard Oakley
• Middle East Cyber-Espionage – Objective-See’s Blog

Support and HowTos

• Packaging SAP GUI for macOS with Java 11 support – Rich Trouton
• Jamf and Product Issues – we’ve got a list! – Neil Martin
• Cleaning up sensitive files: How to sanitise storage – Howard Oakley
• APFS- Apple file system – Alex Usov
• Managing Mac Kiosks – Marriott Library
• Preparing your Mac for disposal – Howard Oakley
• Be wary when traveling — Jason Miller

Scripting and Automation

• Backing up extension attributes from Jamf Pro – Rich Trouton
• Extension Attribute to Detect WindShift in macOS – Charles Edge

Updates and Releases

• Munki 3.6.0 Developer Preview 3

To Watch

• Talking Scalability with MacAdmins Monthly – Charles Edge
• MacTech Conference 2018 – Session Videos on YouTube

To Listen

• Screw Your Shoes with Adam and Tonya Engst – Mac Admins Podcast

Support

There are no ads on my webpage or this newsletter. If you are enjoying what you are reading here, please spread the word and recommend it to another Mac Admin!

• Weblog
• Weekly Email Newsletter (TinyLetter)
• Apple News
• Twitter
• Micro.blog
• Mastodon.social
• Facebook
• LinkedIn

If you want to support me and this website even further, then consider buying one (or all) of my books. It’s like a subscription fee, but you also get a useful book or two extra!

• ‘macOS Installation for Apple Administrators’
• ‘Property Lists, Preferences and Profiles for Apple Administrators’
• ‘Packaging for Apple Administrators’

Lots of interesting posts this week. Jamf 10.9, MS Office now supports the Dark Side… er dark mode.

The MacAdmins Podcasts got Doug Brooks and Jeremy Butcher from Apple on the show to talk about Apple, deployment and the T2 chip!

If you would rather get the weekly newsletter by email, you can subscribe to the Scripting OS X Weekly Newsletter here!! (Same content, delivered to your Inbox once a week.)

News and Opinion

• Ericsson/O2 outage root cause announced – Tom Limoncelli
• Jamf CEO: 2019 will see the ‘greatest Windows-to-Mac migration in history’ – Dennis Sellers, Apple World Today
• Apple Enterprise & Mac marketing leads talk T2 chip & Apple’s role in business on ‘Mac Admins Podcast’ – Chance Miller, 9to5Mac

MacAdmins on Twitter

• Charles S Edge: “The github.com/jamfit github.com/jamfprofessionalservices && github.com/jamfsupport accounts have now been consolidated into one @JAMFSoftware Open Source Community at github.com/jamf to make it easier to find projects that do things you might need to do”
• John C. Welch: (Long Thread, worth reading.)
• William Smith:
  “Microsoft Office 2019 for Mac v 16.20 drops today with Dark Mode for Mojave users! And if that’s a little too stark when using Outlook (or any other app), here’s how to turn it off. defaults write http://com.microsoft.Outlook NSRequiresAquaSystemAppearance -bool yes”
• Patrick Gallagher Jr: “Well hello XProtect, been a while!” (Note: MRT got an update, too.)
• Eric Holtam: “News to me so may be news to others. Firefox 63+ supports mobile config policies. Here begins the move away from the great CCK2. Example settings at https://github.com/mozilla/policy-templates”
• Graham Gilbert: “If you are a fellow #macadmin and want to speak at a conference in 2019, let me know and I’ll try to make that happen. Whether it is making the right introduction, looking over your proposal or being someone to practice your slides on, let me know how I can help.”
• lamby: “Symlinks.… ”

Bugs and Security

• Mojave’s Sandbox is Leaky – Objective-See’s Blog
• Word to Your Mac – Objective-See’s Blog
• Where do Apple’s recent security updates leave macOS? – Howard Oakley

Support and HowTos

• Backing up macOS scripts from Jamf Pro – Rich Trouton
• Artisanal Jamf Filevault2 Key Escrow Profiles – Richard Purves
• Mojave 10.14.2 and Secure Tokens, it works! – Frederick Abeloos
• iTunes 12.8 on 10.13.6 not seeing iOS devices – Alan Siu
• Running osquery as sudo/root vs. user – Fritz Ifert-Miller, Kolide
• Customising the Adobe Creative Cloud Desktop App – Ben Toms
• About the “Increased startup time when upgrading to Jamf Pro 10.9.0” – Mike Paul

Scripting and Automation

• More Slackin’ – Ben Toms
• Animate with Keynote & Swift Playgrounds — Daniel Budd
• Script to manage Secure Tokens on macOS 10.14.2+ – Frederick Abeloos
• Installing Apps on Mobile Devices Using a URL Scheme and Jamf Self Service for iOS – Jamf Nation Knowledge Base

Updates and Releases

• SUS Inspector 0.3.1
• Munki 3.5.1
• SplashBuddy 1.3.2 Pre-Release
• Microsoft Office 2019 16.20
• Jamf Pro 10.9

To Watch

• Tim Perfitt: “Using a Smart Card out of the box with macOS for login authentication”
• Tim Perfitt: “Provisioning Certificates on a Smart Card / Yubikey for macOS authentication”
• Otto the Automator: “My session at the @JAMFSoftware JNUC 2018 showing how to manage iOS devices upon attachment to a Mac. https://www.youtube.com/watch?v=5aSW_47rXKE ”

To Listen

• Jamf After Dark: Getting Smart with Jamf Education
• The One With Apple – Mac Admins Podcast

Support

There are no ads on my webpage or this newsletter. If you are enjoying what you are reading here, please spread the word and recommend it to another Mac Admin!

• Weblog
• Weekly Email Newsletter (TinyLetter)
• Apple News
• Twitter
• Micro.blog
• Mastodon.social
• Facebook
• LinkedIn

If you want to support me and this website even further, then consider buying one (or all) of my books. It’s like a subscription fee, but you also get a useful book or two extra!

• ‘macOS Installation for Apple Administrators’
• ‘Property Lists, Preferences and Profiles for Apple Administrators’
• ‘Packaging for Apple Administrators’

We got the macOS 10.14.2 update this week, along with iOS 12.1.1 and watchOS 5.1.2. Versioning is really weird this time around. One can assume something major is planned for iOS 12.2.

For macOS 10.14.2 looks like a unified build for all current hardware. It’s been a while.

If you would rather get the weekly newsletter by email, you can subscribe to the Scripting OS X Weekly Newsletter here!! (Same content, delivered to your Inbox once a week.)

News and Opinion

• On Switching from an iPad Pro and a Macbook to a Pixelbook — Fraser Speirs
• Last Week on My Mac: Where will all those coders go? – Howard Oakley

MacAdmins on Twitter

• Jason Broccardo: “10.12.6 + SecUpdate 2018–006 = 16G1710 10.13.6 + SecUpdate 2018–003 = 17G3025 10.14.2 = 18C54”
• Jason Broccardo: “!!!! 10.13.6 + 2018–003 = 17G4015 !!!”
• William Smith: “2019 calendar for Microsoft Office 2019 for Mac for 2019 monthly releases is posted. (Subject to change.) https://macadmins.software/calendar/”

Bugs and Security

• Apple has pushed an update to Gatekeeper’s data – Howard Oakley

Support and HowTos

• Adobe device licensing and expiry dates and Jamf – Oh my! – Neil Martin
• “Touchless” macOS deployment utilizing JAMF Connect and InstallApplications – Lucas J. Hall
• Downloading macOS High Sierra from the Mac App Store – Rich Trouton
• Colour—Deep and Wide – Anthony Reimer
• Hello ESET Endpoint Antivirus! Deployment, management and migrating from SCEP – Neil Martin
• How to do quick testing with IRL Macs – Emily Kausalik

Scripting and Automation

• Splashtop Extension Attribute for Jamf Pro – Charles Edge
• Download album art from Apple with albumart-dl – Paul Galow

Apple Support

• macOS Mojave 10.14.2 Developer Release Notes
• macOS Mojave 10.14.2 Update
• iOS 12.1.1 Update
• watchOS 5.1.2 Update
• macOS Mojave 10.14.2 Combo Update
• About the security content of macOS Mojave 10.14.2, Security Update 2018–003 High Sierra, Security Update 2018–006 Sierra
• About the security content of iOS 12.1.1
• About the security content of watchOS 5.1.2
• Mobile device management settings for IT (Updated, for macOS “Certificate Transparency” was added)

Updates and Releases

• ‎Smart Card Utility
• Munki 3.6.0 Developer Preview 2

To Listen

• Jamf After Dark, Episode 8: Jumpy McJumpstarts

Support

There are no ads on my webpage or this newsletter. If you are enjoying what you are reading here, please spread the word and recommend it to another Mac Admin!

• Weblog
• Weekly Email Newsletter (TinyLetter)
• Apple News
• Twitter
• Micro.blog
• Mastodon.social
• Facebook
• LinkedIn

If you want to support me and this website even further, then consider buying one (or all) of my books. It’s like a subscription fee, but you also get a useful book or two extra!

• ‘macOS Installation for Apple Administrators’
• ‘Property Lists, Preferences and Profiles for Apple Administrators’
• ‘Packaging for Apple Administrators’

Just a brief summary this week as I am still travelling through beautiful NZ. Just as a warning: next week’s letter may also be short and late.

If you would rather get the weekly newsletter by email, you can subscribe to the Scripting OS X Weekly Newsletter here!! (Same content, delivered to your Inbox once a week.)

News and Opinion

• Mojave’s App Store is disconcerting (and how to do dates in software) – Howard Oakley
• 9 Hidden iPhone Features That Make Your Life Easier – Jason Snell
• Canada’s Corel is acquiring virtualization specialist Parallels in an all-cash deal – Ingrid Lunden, TechCrunch
• Apple Finally Lets Companies Self-B2B iOS Apps – Josh Wisenbaker
• “Alexa, play Bebe Rexha on Apple Music” – Amazon Blog

Bugs and Security

• SSH on OSX Mojave failing with broken pipe error – Duncan Epping, Yellow Bricks

Support and HowTos

• In the beginning there was Sudo: macOS Terminal Skills – Neil Sperrings, Amsys
• Reset Printer Queue – DAM SAN

Scripting and Automation

• Backing up smart and static groups from Jamf Pro – Rich Trouton
• Set JAMF Pro Extension Attribute on Attachment – Sal Soghoian
• AppleScript and Keynote: Countdown Clock – Sal Soghoian
• Changing wallpaper on new users computer – Alex Usov

Apple Support

• Password Rules Validation Tool – Apple Developer (via Jason Broccardo)

Updates and Releases

• Munki 3.5 Release Candidate 2
• SubEthaEdit 5 now available free of charge in the App Store and as direct download. The complete source code with history going back 15 years is also available under the MIT License.

Support

There are no ads on my webpage or this newsletter. If you are enjoying what you are reading here, please spread the word and recommend it to another Mac Admin!

• Weblog
• Weekly Email Newsletter (TinyLetter)
• Apple News
• Twitter
• Micro.blog
• Mastodon.social
• Facebook
• LinkedIn

If you want to support me and this website even further, then consider buying one (or all) of my books. It’s like a subscription fee, but you also get a useful book or two extra!

• ‘macOS Installation for Apple Administrators’
• ‘Property Lists, Preferences and Profiles for Apple Administrators’
• ‘Packaging for Apple Administrators’

One of the promises at this year’s WWDC was that some high profile Mac apps would return to the Mac App Store. This week, part of that promise was fulfilled as Panic’s Transmit re-appeared in the Mac App Store.

For admins this news is bittersweet. Transmit chose subscription pricing for the App Store. Unlike App purchases, which can be managed with VPP, subscriptions and other in-App-Purchases still cannot be managed. Thankfully, Panic still offers the standalone app, for a fixed price, which can be managed by traditional means.

Don’t miss the MacAdmins podcast this week. I actually talk briefly about the process of building this very newsletter every week.

If you would rather get the weekly newsletter by email, you can subscribe to the Scripting OS X Weekly Newsletter here!! (Same content, delivered to your Inbox once a week.)

On Scripting OS X

• MacAdmins Podcast, Episode 102: Erase All the Things (featuring myself!)

News and Opinion

• The State of the iPad in 2018 – Bradley Chambers, 9to5Mac
• Here’s How Apple Should Have Combined the iPad and Mac Mini – Luna Display
• Panic’s Transmit Returns to the Mac App Store – John Voorhees, MacStories

MacAdmins on Twitter

• Steve Yuroff: “Noting the steps needed to get a never-booted 10.14.beta for testing DEP and SecureToken behaviors. This isn’t fun anymore.”
• Tim Perfitt: “When searching for something in Spotlight, if you press command-return when an item is selected, it opens the enclosing folder.”

Bugs and Security

• Farewell SCEP! – Neil Martin
• Apple has pushed an update to Mojave’s TCC privacy protection data – Howard Oakley

Support and HowTos

• Boot Camp Changes on T2 Macs – Tim Perfitt, Twocanoes Software
• iPhone cookie error when adding a Google account – Alan Siu
• ESXi on a Raspberry Pi – William Lam, Virtually Ghetto
• The Mac Hardware/Software Obsolescence Chart – Anthony Reimer

Scripting and Automation

• Dev Update (2019–11–09) – Bryson Tyrell
• Running an AutoPkg Recipe with the –pkg Option – Anthony Reimer
• Backing up configuration profiles from Jamf Pro – Rich Trouton

Apple Support

• 13-inch MacBook Pro (non Touch Bar) Solid-State Drive Service Program (via Eric Holtham)
• If users can’t sign in to iCloud or Google on a managed iOS device
• Notarizing Your App Before Distribution: “In macOS 10.14, notarizing your software is optional, but recommended. In a future version of macOS, notarization will be required.” (Developer Documentation, via Rosnya Keller)

Updates and Releases

• iSH – An iOS Linux Shell for Your iPhone or iPad (Patreon, GitHub, TestFlight)
• Transmit 5 in the Mac App Store

To Watch

• Startup keys on the new T2 Macs – Tim Perfitt, YouTube

To Listen

• Erase All The Things! with Armin Briegel – Mac Admins Podcast

Support

There are no ads on my webpage or this newsletter. If you are enjoying what you are reading here, please spread the word and recommend it to another Mac Admin!

• Weblog
• Weekly Email Newsletter (TinyLetter)
• Apple News
• Twitter
• Micro.blog
• Mastodon.social
• Facebook
• LinkedIn

If you want to support me and this website even further, then consider buying one (or all) of my books. It’s like a subscription fee, but you also get a useful book or two extra!

• ‘macOS Installation for Apple Administrators’
• ‘Property Lists, Preferences and Profiles for Apple Administrators’
• ‘Packaging for Apple Administrators’