12Şub
Read files protected with System Integrity Protection with sudo
I had a debate with a friend about the security model in new OS X versions. OS X El Capitan and newer have the System Integrity Protection security feature which protects aspects of the OS even from root users.
My friend claimed that it's secure by design to the extent that a root user can't read protected files, for example files on the desktop. I find it hard to believe since the root user has so many power, there are probably ways to read any file, for example by reading the filesystem directly or via other means.
My question, which I searched but didn't find an answer, is: Can a root user in OS X read protected files, bypassing System Integrity Protection? Or is the design so good that there's no way do to that even for a root user?
