-
-
Notifications
You must be signed in to change notification settings - Fork 197
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Safari incorrect information related to SIP #2195
Comments
From Apple's documentation:
I think if their documentation says it then it's fine for our site as well. |
Read-only implies that files can be still be read making it possible for malware to do session hijacking. |
I also realised that this is talking about Safari on iOS. |
Again, I'm just sticking with what the official documentation says. |
From what I have seen iOS does not have SIP. iOS has its own security mechanisms in place to protect the integrity of the system and prevent unauthorised access or modifications, but it does not use the same SIP framework as macOS.
I don't think information about SIP is relevant here as Safari is recommended for iOS unless it was intended to include macOS specific features in here. |
Regarding the behaviour of Safari ( in macOS) files being not readable can be because Safari is Sandboxed. |
Right, I'll fix that. |
Affected page
https://www.privacyguides.org/en/mobile-browsers/#safari
Description
Related: #2194
This is incorrect as SIP prevent any random process from reading files (assuming there is no 0-day exploit for this).
You can verify this in macos by running
sudo ls ~/Library/Safari
command in Terminal:Sources
https://rambo.codes/posts/2023-04-04-macos-security-bugs-exposed-safari-history-and-device-location-to-unauthorized-apps
Before submitting
The text was updated successfully, but these errors were encountered: