Comment by latexr

Comment by latexr 2 days ago

6 replies

View on Hacker News

There is also another layer: when SIPS was introduced, there were tons of articles and videos teaching people to turn it off when they shouldn’t. This ranged from uninformed social media “developers” who confidently spewed dangerous bad advice, to outright bad actors trying to compromise your machine. Non-savvy users could still break their own systems by disabling these features easily.

But largely I agree with you. I wish Apple had taken longer to fully develop a robust solution from the ground up instead of the status quo of piling on year after year to a semi-broken system.

Wowfunhappy 2 days ago

> There is also another layer: when SIPS was introduced, there were tons of articles and videos teaching people to turn it off when they shouldn’t.

...see, I actually had the opposite frustration with SIP. So many people were so hesitant to turn it off, even when they had a clear use case.

This is where the argument looses me. I agree that it's good to protect people from screwing up by accident. But if someone has taken the time to reboot their computer into recovery mode, find the Terminal app, and run a very specific command, that is not an accident! That is a user clearly requesting that the training wheels be removed. And sure, maybe the user was following bad advice, but it wasn't an accident!

People are allowed to do stupid things, that's how we learn. Again, it's great to have guardrails for people who want them, and it's great to have those guardrails on by default for people who don't want to think about them or even know they exist. But deciding which users are savvy enough to be worthy of disabling SIP feels Gatekeepy to me.

Reply View 4 replies
  • scarface_74 2 days ago

    Until you install a piece of niche software that corrupts your entire system when installing it with SIP turned off…

    https://support.google.com/chrome/thread/15235262/chrome-upd...

    Reply View 3 replies
    • Wowfunhappy 2 days ago

      Because Google majorly screwed up, in a piece of software that runs with administrator privileges! Why the heck was it running with those privileges in the first place?! It's kind of nuts that Google faced basically no blow-back for rendering people's systems unbootable.

      The Chrome updater could also have had a bug that completely deletes your home directory, and SIP wouldn't protect you. I guess your computer would still boot in that case, but how much would you care? The actual damage would be worse.

      Anyway, this entire incident was notable precisely because it was so unusual—in ~9 years of SIP I'm not aware of any other instances where turning it off caused problems.

      Reply View 2 replies
      • saagarjha 2 days ago

        It is trivial to escalate to root and then do precisely that when SIP is disabled.

        Reply View 1 reply
        • Wowfunhappy a day ago

          That's because more recently Apple introduced an entitlement to make that trivial, right? I wish they hadn't done that.

          Reply View 0 replies
andyzweb 2 days ago

Correction: SIPS is the scriptable image processing system, SIP is system integrity protection.

Reply View 0 replies