I used it for years, and really like it, but recently it has become flaky and not let me set the side thumb button on my MX720.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Logitech Blames 'Inexcusable Mistake' After Certificate Expiry Breaks macOS Apps
- Thread starter MacRumors
- Start date
- Sort by reaction score
I used it for years, and really like it, but recently it has become flaky and not let me set the side thumb button on my MX720.
You're very welcome.
Its a paid application, but it's been around forever and has never done wrong by me.
I think you’d be surprised by how many F500 companies run into seemingly small things like this that turn into large problems. As @chrono1081 mentioned, sometimes it’s the resource that is out, or the responsibility that was shifted and never accounted for. Happens all the time across all orgs within IT and out.
Key word: “should”.
You’d be surprised how things sometimes work (or not) in seemingly very large and professional companies.
The "inexcusable mistake" is actually on Apple's part, for making it possible for this to even happen. They've long since passed the point where the so-called "security" features have made macOS actively user-hostile. They used to make fun of Microsoft's "security theater" features in Vista, and rightly so, but they've completely forgotten how to make a user-friendly OS and now they're out-Vistaing Vista.
Like the access database running under someone desk that nobody knows about but somehow hosts crucial production information.
A company as established as Logitech shouldn’t have just one person in charge of that. Mom and pop’s windstorm company? Sure. Not Logitech.
First thing I did after programming my G305 was to save its settings to onboard memory and then wipe everything Logitech had installed.
True, it is, but it's also just one more piece of evidence of what's been true for well over a decade now: Logitech makes great hardware, and Logitech's software is an absolute embarrassment.
I own two MX Master mice, and those replaced the previous MX Master iteration, which replaced MX Revolution, and at no point since around the MX Revolution has Logitech's driver been anything other than garbage. It crashes regularly (wait, why doesn't the back button work anymore? Oh, driver hung again), it randomly stops working, and if you switch users on a system with two or more users there's a near certainty every time you switch users that the driver will die in the background and must be force quit to get anything working again.
The mutli-user bug in particular has existed for years, is completely reproducible on multiple systems, and I've reported it many times, but nope, they just can't build a driver that can handle two user logins. There has, technically, been an improvement somewhat recently--you no longer have to reboot entirely to get it working again, you just need to force quit the driver, and once in a rare while it manages to restart itself after a minute without user assistance. Some fix there.
It's so bad that when this bug kicked in today and my custom buttons stopped working, I wasn't even surprised--I just assumed it was yet another stupid driver flake-out.
I keep giving the company money because I have yet to find any hardware that can even remotely compete with the MX Master series, but their software is such an insult I go out of my way to use competitors when there's any other comparable option.
Last edited:
I've used Logitech mice for many years now, but I've never used their software.
Instead, I use either USB Overdrive or SteerMouse. Both are excellent.
USB Overdrive works with keyboards, as well...
Instead, I use either USB Overdrive or SteerMouse. Both are excellent.
USB Overdrive works with keyboards, as well...
I know... my world is turned upside down
For me, though, the redeeming feature of the MX Master mouse is that it works perfectly well without any of the Logitech software installed (apart from the gestures, which I can live without).
Tricky. I really don't like that idea but...
If you want developer verification then it becomes much less effective if there's no way for the certificate to expire or be revoked if (say) some malware/vulnerability slips through. Or if the developer goes rogue/gets taken over/gets hacked it's no use if they can keep on using existing certificates forever. A large part of verification relies on being able to block developers who go bad or drop off the grid.
If you don't want verification then you're going to take a security hit. With modern, everything-talks-to-the-Internet systems and security vulnerabilities continually being found in existing software, running "abandonware" is a risk - and while you personally may be competent to take the necessary precautions, others won't. If they lose their data, get doxxed, whatever then maybe that's their lookout, but if that computer ends up part of a botnet then it's a problem for everybody.
You left out how this is Tim Cook's fault and never would have happened under Steve Jobs.
/S
The VERY bloated Options+ software is exactly the reason I don't use Logitech devices. It would be nice if they had a simple background app that only managed the hardware instead of a ginormous app that sucks up resources and requires daily updates.
After working all day and night I rebooted a couple of hours ago. Only left and right mouse click were accessible, the preferences UI could not even load. I remembered I had trouble in the past when the UI didn't load because I had blocked its internet access and I already had its telemetry BS blocked. I temporarily deactivated Little Snitch and reinstalled the offline installer, nothing. Only then did I google it (i.e. "firmware_update_in_progress"). Visited the first Logitech link, read about it and I installed the patch, even though I had the driver installed in my system using the offline installer. It worked. THEN I visited macrumors forum and here it is, sitting first in the front page.
I like to have the extra functionality for my input devices but the requirement to be online in order to use them is inexcusable. Yet, there is no way I would ever use a mouse from Apple - they are all terrible (even though I can only speak about 1986 and afterwards).
Anyway, the one software I really miss is ControllerMate, that was special and great.
I like to have the extra functionality for my input devices but the requirement to be online in order to use them is inexcusable. Yet, there is no way I would ever use a mouse from Apple - they are all terrible (even though I can only speak about 1986 and afterwards).
Anyway, the one software I really miss is ControllerMate, that was special and great.
Last edited:
SteerMouse
I use Steermouse in place of the Logi software and it works just fine with my MX Master 4. It does not support the haptics stuff, but all the buttons work.
This doesn't make sense to me - why does the cert need to be continually checked for the local software to keep working?
I'd expect the cert to be checked once when it's downloaded/installed or maybe when it's run the first time... at that point, I'd expect macOS to recognize the software in perpetuity and allow it to run forever.
Ok - I do have a reason to repeatedly check - check if the cert was revoked, for it Apple discovered it was malware and yanked its permissions. But breaking based on it expiring after the software was already confirmed as being ok previously is just silly. macOS aught to pin the cert or pin the binary or something into a much longer lasting whitelist.
Handling it this way is like saying that if I download a PDF, macOS won't let me open it anymore and it'll tell me I have an insecure connection after the SSL cert that was part of the HTTPS connection when I downloaded the PDF expires... it doesn't matter at this point. The cert was checked and served its purpose of making sure I downloaded what I wanted and there was no Man-in-the-middle attack - the file is saved now and known to be good, for forever.
I used that DECADES ago. Glad to see they are still going strong.
Exactly this. I've seen many surprising certificate expirations. I believe this has even happened to Google and Microsoft.
I may have even let a certificate expire myself once or twice...
By the way can we talk about the tyrrany of Lets Encrypt and the shortening of certificate lifetimes to one friggin month? Not every use case is appropriate for it, but they've succeeded in making sure you have to use it, need it or not.