I disable System Integrity Protection a while ago. I want to be able control my computer to the fullest. And disabling SIP is the only way to apply custom icon art to apps.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
System Integrity Protection Inexplicably Disabled by Default on Some New MacBook Pro Models
- Thread starter MacRumors
- Start date
- Sort by reaction score
I disable System Integrity Protection a while ago. I want to be able control my computer to the fullest. And disabling SIP is the only way to apply custom icon art to apps.
It's more like a car manufacturer releasing their car without a lock on your engine hood.
Picked up the Touchbar 13" yesterday and I did notice Bartender was able to hide the Spotlight menulet, but it did not dawn on me SIP being disabled was the reason.
Just ran the Terminal command, and sure enough, SIP is disabled.
Just ran the Terminal command, and sure enough, SIP is disabled.
Well this all our fault. We have been pushing Apple to release the MacBook Pro for over a year so they rushed it out to market immediately.
It was disabled on my 13" Pro with touch bar. Re-enabled it using the steps provided in the link.
Haha, not afraid, I have Little snitch running, and even without it I am 99.9999 % sure I won't be hacked.
We are not running windows are we!
There is no virus on OS X since the beginning OS X 10.b so I am not afraid to get one in the near future.
But, I see the sarcasme in your post.
When Tim Cook runs out of parts / features he can skimp on or remove , I'm sure he will have no issues selling us software we don't need
If you use your brain you won't need SIP at all, I survived 15 years on OS X without any problems.
It's by no means as bad as you say it is, there is malware for MacOS (X) but believe me it is very rare to get infected.
The NSA forgot to turn it back on after they made some minor adjustments while it was waiting to "clear" customs...
Hostile code can run regardless whether SIP is enforced and it does nothing against vulnerabilities in protected components. A lot of damage can be done without having to infect system components. At this point the efficacy of this protection remains purely theoretical.
No choice. SIP goes too far. I can't use bless for example, even with super-user privileges via sudo. And bless is an Apple-provided command line utility for crying out loud, not some third party app. Also can't use any number of utilities or third party drivers that provide valuable functionality or fix issues inherent with OSX.
You are correct, but actually rooting the system is much more difficult with SIP in place. Persistent threats are certainly possible without superuser privileges, and those can do tremendous damage. Which is why the next shoe to drop is requiring Apple developer signatures on all binaries, and checking them at runtime, and not simply the GateKeeper one-time download check. It's just a matter of time before Apple crosses that rubicon.
Not really. Most Malware on Macs don't really need to access system features that SIP protects. Not to mention the numerous utilities I use that require SIP to be disabled, even my own patches (as seen in my signature)
whoops, that's embarrassing for a company that prides itself on security
Just by curiosity, could you deactivate SIP, change icons and turn it back on again?
That's kinda cheap, I mean they are selling a book with photos for $300
Don't expect anything less then $199.99 for Apple Magic Virus Protection™
You expect regular non-technical customers like grandmothers know anything about that?
Um...this is a forum. Why can't people express what they want to say? I hardly find anything "positive" about this issue for new apple users.
Is it possible for those who comment to turn on their OWN proofing before posting?
Read what you write before you select Post Reply.
[doublepost=1479410264][/doublepost]
Read what you write before you select Post Reply.
[doublepost=1479410264][/doublepost]
It is NOT Twitter or some other anonymous commenting social site, though.
