Rootless kernel level protection

[leman]

I think its a very nice feature and it gives me, as a server and IT administrator, an additional level of security. It can be slightly annoying right now with 10.11, because many tools insist to be installed in /bin and other system-only parts of the tree, but that is hardly the fault of OS X. So far I see no reason to disable it. Only had to reinstall some stuff to /usr/local, where it should have been from the start.

 

[KALLT]

I think its a very nice feature and it gives me, as a server and IT administrator, an additional level of security. It can be slightly annoying right now with 10.11, because many tools insist to be installed in /bin and other system-only parts of the tree, but that is hardly the fault of OS X. So far I see no reason to disable it. Only had to reinstall some stuff to /usr/local, where it should have been from the start.

I am actually looking forward to this as a user. There are many applications that needlessly install themselves in locations where they don't belong or request root permission when it's not required. Hopefully, this will make these developers think long and hard. In addition, the thought of a system folder that cannot be messed with really appeals to me for some reason. It's one thing less to pay attention to when you are using your system and it's the one area now that won't look different or become 'unclean' after a few months of use just because you experimented with third-party software.

 

[Siannath]

Ok, i have a problem. I am on the public GM (15A282a). I do not have a recovery partition… so… can't I disable System Integrity Protection? I think I screwed up.