> On Feb 28, 2017, at 02:07, René J.V. Bertin <[email protected]> wrote: > > On Monday February 27 2017 12:00:26 [email protected] wrote: >> ...or maybe they "just" need "a dozen" years of work. Darwin isn't Linux; >> SIP isn't SElinux: things don't carry over. > > With Apple's resources you'd hope it wouldn't take them a dozen years... > >> If you really need to pass through such envvars, just don't use a system >> shell. > > Like installing a shell through MacPorts or similar and setting that as your > login shell?
Yep, that's certainly an option. > Won't such shells have limited permissions because they haven't been ratified > officially? Limited permissions? In what regard? FWIW, bash on macOS is quite ancient because we got stuck at the last GPL-2 version of bash. Most folks that I know prefer to just install current versions of zsh since it's got a much friendlier license and is significantly more up to date than macOS's bash. >> Many posts out there suggest to turn it off to try and workaround problems >> without realizing that SIP has nothing to do with the issue, and users >> blindly following such advice just leave it turned off on their systems >> without realizing the security implications. > > SIP has become the new "repair permissions"? :) Yep. > It would probably help if there were an "easily" accessible way to "reboot > without SIP", either from the running session or through a keychord when > booting up. Or, better, both. > This would allow people to test if SIP is involved and still fall back into > its safe arms at the next reboot. Interesting idea. File a radar. I suspect that it's been mentioned before, but +1 never hurts. > OTOH, I get the impression that we're discussing a context here that's likely > encountered only by people who survived just fine without SIP until now. > Presumably they'll also be able to make educated choices regarding enabling > or disabling SIP. > > R. > _______________________________________________ > Do not post admin requests to the list. They will be ignored. > X11-users mailing list ([email protected]) > Help/Unsubscribe/Update your Subscription: > https://lists.apple.com/mailman/options/x11-users/jeremyhu%40freedesktop.org > > This email sent to [email protected] >
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ Do not post admin requests to the list. They will be ignored. X11-users mailing list ([email protected]) Help/Unsubscribe/Update your Subscription: https://lists.apple.com/mailman/options/x11-users/archive%40mail-archive.com This email sent to [email protected]
