-
Notifications
You must be signed in to change notification settings - Fork 3
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
System protection bypass does not work in MacOS 15.1 #65
Comments
@shadowhand I don't have that set to I'll try to upgrade to the latest version, just in case… |
@mnapoli I think if you have previously bypassed SP for 7777 then it remembers the setting. I suspect that new installations of MacOS and/or 7777 will run into this. |
OK that could be it. Could you explain what the problem is exactly? I don't know what it means to run |
@mnapoli spctl used to allow specific unsigned apps to be executed. Now it seems that Apple has done away with that, only allowing Configuration Profiles to modify the SP database, so if users get an error saying that 7777 is unsigned and cannot be opened, they will need to allow applications from Anywhere, per my screenshots above. (See also this repo README. 😉 ) I have updated the title/description based on the exchange. |
Ah-ha, while reading through some commentary from people smarter than me, I came across this comment:
As such, the recommended method of installing 7777 (via curl) should continue to work as expected for everyone. However, if someone tries to use download 7777 via a browser, it may not work. |
Doh! 🤦 Thanks for taking the time to add the details! OK I'll clarify that explicitly in the README, thanks a lot. Between this app and the Bref Dashboard, I really hate distributing desktop or CLI apps 🥲 Working in the web is much more fun! |
I also had ths problem when trying to install 7777 via brew - the instructions on the README didn't work unfortunately; % spctl --add /opt/homebrew/bin/7777 I also tried the following, which also failed; In the end I uninstalled via brew, and downloaded it via curl which didn't have any issues at all in terms of security/running. That's on a new Macbook Pro, on the latest MacOS |
The word "run" is not part of the command, i.e. this is what should be executed: xattr -d com.apple.quarantine 7777 Good to know about homebrew vs curl though! |
Lol - good to know ... I probably needed more sleep at that point! |
It seems that Apple no longer allows
spctl --add ...
at all; this is the documentation fromman spctl
in MacOS 15.1.0:And indeed, checking the assessment fails:
This does not appear to impact users who already have SP bypassed for 7777, but it will likely impact new installations.
The text was updated successfully, but these errors were encountered: