Hi Liam,

> I don't know much about SB, but doesn't it have a function (can't remember the
> name) that lets you validate the integrity of the installer as it is running
> and abort if it has been tampered with?

Correct, but that doesn't prevent installed applications from being
tampered with. There are APIs to verify certificates, but the last time
I looked at them they looked nasty<g> IMO, the OS should verify it,
since it's the OS that requires those darn things. I'm not a fan of
code signing

Best regards,

Arnor Baldvinsson
Icetips Alta LLC