macadmin.fraserhess.com

Discoveries and solutions from my work administering Mac computers.

  • Opinion: A Snow Leopard release is not the answer

    This past weekend, Mark Gurman at Bloomberg reported that iOS 27 will be a “no-frills ‘Snow Leopard’ update” focused on “quality improvements and artificial intelligence features.” If you remember the Mac OS X Snow Leopard release with fondness, as I do, you’ll be tempted to see this as the solution to the software quality issues…

    ,

  • Packaging changes in Cisco Secure Client 5.1.13

    Cisco Secure Client 5.1.13 features minor updates and bug fixes, with significant changes in its macOS packaging. The GUI client is now a separate installer choice, enhancing deployment flexibility. Mac admins can choose not to install the GUI app if unnecessary.

    ,

  • The story of CVE-2025-22460

    Yesterday, Ivanti disclosed CVE-2025-22460, a use of default passwords in their Cloud Services Application. The CSA is a pseudo-reverse proxy for Ivanti’s on-premise Endpoint Manager. The fix requires a fresh install of CSA 5.0.5 or running mitigation steps (login required) after upgrading from 5.0.0-5.0.4. This disclosure began for me last month due to a finding…

  • Building MacBooks with Jamf Setup Manager

    In the last of this series of posts about Jamf Setup Manager, I discuss how we use it to provision MacBooks. This is our primary use case for JSM. Read the first post to learn more about our decision to use it as our preferred tool for provisioning Macs. Design Goals When considering how to replace our…

    , ,

  • Particulars 64

    Particulars, my system information app, has been updated to version 64. The biggest change is that I had to replace the crash reporter due to the retirement of Microsoft’s App Center. After March 31st, crashes in version 63 and earlier cannot be reported. There are two other changes for organizations. These changes mean that it’s…