El Capitan’s System Integrity Protection

With El Capitan released, there’s one ‘feature’ that really needs to be highlighted – for better or worse.

System Integrity Protection (SIP, sometimes referred to as rootless) is a security feature of OS X El Capitan, the operating system by Apple Inc. It protects certain system processes, files and folders from being modified or tampered with by other processes even when executed by the root user or by a user with root privileges (sudo). Apple says that the root user can be a significant risk factor to the system’s security, especially on systems with a single user account on which that user is also the administrator. System Integrity Protection is enabled by default, but can be disabled.

Here’s Apple’s WWDC presentation about SIP, and here’s the Ars review’s section about it.

31 Comments

  1. 2015-10-01 9:39 am
    • 2015-10-01 10:15 am
      • 2015-10-01 1:37 pm
        • 2015-10-01 1:39 pm
          • 2015-10-01 8:51 pm
        • 2015-10-01 9:00 pm
          • 2015-10-02 7:33 pm
    • 2015-10-01 2:50 pm
      • 2015-10-01 7:53 pm
        • 2015-10-01 9:13 pm
          • 2015-10-01 9:47 pm
          • 2015-10-02 8:46 am
          • 2015-10-02 2:11 pm
          • 2015-10-02 3:25 pm
  2. 2015-10-01 10:52 am
    • 2015-10-01 11:49 am
  3. 2015-10-01 11:52 am
    • 2015-10-01 1:36 pm
      • 2015-10-01 7:51 pm
        • 2015-10-01 8:45 pm
          • 2015-10-01 9:45 pm
          • 2015-10-02 7:51 am
  4. 2015-10-01 12:38 pm
  5. 2015-10-01 5:23 pm
  6. 2015-10-01 8:27 pm
  7. 2015-10-01 10:52 pm
    • 2015-10-02 12:02 am
      • 2015-10-02 8:18 am
        • 2015-10-02 1:17 pm
      • 2015-10-02 6:44 pm