This can be avoided by upgrading to a version of the app that is signed by its developer. Instead, it the 'Allow or Deny' dialog appears every time the app is opened. If the firewall recognizes such an app it doesn't sign it. Some apps check their own integrity when they are opened without using code signing. If you want to deny a digitally signed application, you should first add it to the list and then explicitly deny it. If you choose Deny, OS X adds it to the list but denies incoming connections intended for this app. If you choose Allow, OS X signs the application and automatically adds it to the firewall list. If you run an unsigned app that is not listed in the firewall list, a dialog appears with options to Allow or Deny connections for the app. Choose what mode you would like the firewall to use.
Then, use these steps to enable the application firewall: Choose System Preferences from the Apple menu. Apps included in OS X are signed by Apple and are allowed to receive incoming connections when this setting is enabled. For example, since iTunes is already signed by Apple, it is automatically allowed to receive incoming connections through the firewall. Make sure you have updated to Mac OS X v10.5.1 or later. Applications that are signed by a valid certificate authority are automatically added to the list of allowed apps, rather than prompting the user to authorize them.
