Comment by halapro
18 hours ago
SIP protects the OS, not you nor your files. If you run third party software that can run `rm` of course you're vulnerable to data loss. Apples and oranges.
SIP guarantees that you will be able to turn on your computer in safe mode and remove the malware, whereas without it your OS is toast.
Yes but it's the files that are the important part.
If I had malware then the fate of the hardware is at the bottom of my priority list, I'm probably going to be replacing it anyway. I'd be more concerned that someone is going to steal my AWS credentials to run a cryptominer and I get a bill for hundreds of thousands of dollars!
The only solution to malware is to not install it in the first place. By the time SIP is useful you are already very screwed. SIP makes you safer in the same way that having a parachute on a plane makes you safer, technically yes but the difference in safety is marginal.
SIP also backs some security mechanisms to ensure that they remain functional and not easily bypassable.