Re: ls() operation not permitted

2020-09-11 Thread Tom Lane via X11-users 
macq via X11-users  writes:
> Thanks!
> On 9/11/20, 6:15 PM, "Jamie Kennea"  wrote:
>> Open up the “Security and Privacy” Pane in System Preferences, go to “Full 
>> Disk Access” and add /bin/bash to that list. Doesn’t matter if you don’t use 
>> bash as your shell.

Another option in the "big hammer" department is to turn off SIP [1].
I've never personally had to fool with Full Disk Access settings, which
is likely because I have to turn off SIP because it breaks basic software
testing use-cases [2].



It'd be nice if Apple paid more attention to making their security
features actually usable by power users.  Disabling SIP is not cool from
a security perspective, and neither is granting FDA on a scope as wide
as /bin/bash, because either thing basically means you're handing the
keys to the kingdom to any hacker who manages to get a toehold in your
machine.  But if you can't do what you bought the machine for without
turning off these security features, then you're stuck.

I think SIP is quite comparable to SELinux in the Linux world.  The
difference is that Red Hat spent *years* tuning the SELinux policies
to the point where you could actually enable it on production or
development machines and not have stuff fall over on a regular basis.
(I know, I was there.)  Apple's approach to SIP, on the other hand,
seems to be "what we shipped on day one is perfect, if it doesn't
work for you it's your problem".



regards, tom lane

[1] 
https://www.howtogeek.com/230424/how-to-disable-system-integrity-protection-on-a-mac-and-why-you-shouldnt/
[2] 
https://www.postgresql.org/message-id/flat/18012hGLG6HJ9pQDkHAMYuwQKg%40sparkpost.com
 ___
Do not post admin requests to the list. They will be ignored.
X11-users mailing list  (X11-users@lists.apple.com)
Help/Unsubscribe/Update your Subscription: 
https://lists.apple.com/mailman/options/x11-users/archive%40mail-archive.com

This email sent to arch...@mail-archive.com

Re: ls() operation not permitted

2020-09-11 Thread macq via X11-users 
Thanks!

 

On 9/11/20, 6:15 PM, "Jamie Kennea"  wrote:

 

Open up the “Security and Privacy” Pane in System Preferences, go to “Full Disk 
Access” and add /bin/bash to that list. Doesn’t matter if you don’t use bash as 
your shell.

 

Jamie

 



On Sep 11, 2020, at 5:56 PM, macq via X11-users  
wrote:

 

I’m in the process of moving to a new Mac. On the old Mac I was using MacPorts’ 
X11.app, and all was well. On the new Mac, when I’m in my home folder, I get 
this:

 

macq[20]% ls Documents/

ls: : Operation not permitted

 

But other subdirectories are ok, for example:

 

macq[24]% ls test/

./  ../ foo test.r  test.r~

 

No problem in Terminal.app.

 

I guess there’s some shell environment inheritance issue here, but I don’t know 
how to track it down. More generally, how can I regain access to my Documents 
folder?

 

 

-- note --

I’m using XQuartz.app on the new Mac, but only because the X11.app that was 
migrated to the new machine doesn’t work.

Its error message is, “X11 cannot be opened because of a problem.” and “Check 
with the developer to make sure X11 works with this version of macOS. You may 
need to reinstall the application.“ But both machines are on the same OS 
version, 10.15.6.

 

Thanks for any suggestions!

 

-Don

m...@comcast.net

___
Do not post admin requests to the list. They will be ignored.
X11-users mailing list  (X11-users@lists.apple.com)
Help/Unsubscribe/Update your Subscription: 
https://lists.apple.com/mailman/options/x11-users/jamie%40pompey.org

This email sent to ja...@pompey.org

 

 ___
Do not post admin requests to the list. They will be ignored.
X11-users mailing list  (X11-users@lists.apple.com)
Help/Unsubscribe/Update your Subscription: 
https://lists.apple.com/mailman/options/x11-users/archive%40mail-archive.com

This email sent to arch...@mail-archive.com

Re: ls() operation not permitted

2020-09-11 Thread Jamie Kennea via X11-users 
Open up the “Security and Privacy” Pane in System Preferences, go to “Full Disk 
Access” and add /bin/bash to that list. Doesn’t matter if you don’t use bash as 
your shell.

Jamie


> On Sep 11, 2020, at 5:56 PM, macq via X11-users  
> wrote:
> 
> I’m in the process of moving to a new Mac. On the old Mac I was using 
> MacPorts’ X11.app, and all was well. On the new Mac, when I’m in my home 
> folder, I get this:
>  
> macq[20]% ls Documents/
> ls: : Operation not permitted
>  
> But other subdirectories are ok, for example:
>  
> macq[24]% ls test/
> ./  ../ foo test.r  test.r~
>  
> No problem in Terminal.app.
>  
> I guess there’s some shell environment inheritance issue here, but I don’t 
> know how to track it down. More generally, how can I regain access to my 
> Documents folder?
>  
>  
> -- note --
> I’m using XQuartz.app on the new Mac, but only because the X11.app that was 
> migrated to the new machine doesn’t work.
> Its error message is, “X11 cannot be opened because of a problem.” and “Check 
> with the developer to make sure X11 works with this version of macOS. You may 
> need to reinstall the application.“ But both machines are on the same OS 
> version, 10.15.6.
>  
> Thanks for any suggestions!
>  
> -Don
> m...@comcast.net 
> ___
> Do not post admin requests to the list. They will be ignored.
> X11-users mailing list  (X11-users@lists.apple.com 
> )
> Help/Unsubscribe/Update your Subscription: 
> https://lists.apple.com/mailman/options/x11-users/jamie%40pompey.org 
> 
> 
> This email sent to ja...@pompey.org 
 ___
Do not post admin requests to the list. They will be ignored.
X11-users mailing list  (X11-users@lists.apple.com)
Help/Unsubscribe/Update your Subscription: 
https://lists.apple.com/mailman/options/x11-users/archive%40mail-archive.com

This email sent to arch...@mail-archive.com

ls() operation not permitted

2020-09-11 Thread macq via X11-users 
I’m in the process of moving to a new Mac. On the old Mac I was using MacPorts’ 
X11.app, and all was well. On the new Mac, when I’m in my home folder, I get 
this:

 

macq[20]% ls Documents/

ls: : Operation not permitted

 

But other subdirectories are ok, for example:

 

macq[24]% ls test/

./  ../ foo test.r  test.r~

 

No problem in Terminal.app.

 

I guess there’s some shell environment inheritance issue here, but I don’t know 
how to track it down. More generally, how can I regain access to my Documents 
folder?

 

 

-- note --

I’m using XQuartz.app on the new Mac, but only because the X11.app that was 
migrated to the new machine doesn’t work.

Its error message is, “X11 cannot be opened because of a problem.” and “Check 
with the developer to make sure X11 works with this version of macOS. You may 
need to reinstall the application.“ But both machines are on the same OS 
version, 10.15.6.

 

Thanks for any suggestions!

 

-Don

m...@comcast.net

 ___
Do not post admin requests to the list. They will be ignored.
X11-users mailing list  (X11-users@lists.apple.com)
Help/Unsubscribe/Update your Subscription: 
https://lists.apple.com/mailman/options/x11-users/archive%40mail-archive.com

This email sent to arch...@mail-archive.com