Hi everybody!
To make an "extra Finder application" work properly, I'd have to enable only parts of System Integrity Protection.
sudo csrutil enable –without debug –without fs
I've read that SIP must be enable for security reasons. Is it OK if it's only a part of it?
Thank you!
Is this an app that you’re developing?
Share and Enjoy
—
Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"
It's not an app I'm developing.
Sorry if I'm at the wrong place, but I got no answer at the Apple Community board and I thought that here, I could get one.
Nobody here can answer that, short of reverse-engineering the app or reviewing the app source code if available, and not even really then.
Whether it’s “safe” depends entirely on the app and the app developer.
Both the safety of the app now, and across future app updates.
This app is clearly hooking in oddly and deeply, or is otherwise doing something unusual.
Disabling SIP is not something I’d do for anything short of a critical app from a well-regarded and trusted developer. There’ve been too many problems due to apps that have “burrowed” into macOS over the years, too. Malware, and system add-ons. That’s all part of why SIP exists.
Disabling SIP is not something I’d do for anything short of a critical app
Speaking personally, I wouldn’t disable SIP for any app. I only disable SIP on ‘victim’ machines, preferably victim virtual machines.
Share and Enjoy
—
Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"