(cache)Apple、macOS 10.14 MojaveでRootlessの対象にSoftwareUpdateの「Updates」ディレクトリを追加。

　AppleがmacOS 10.14 MojaveでrootユーザーであってもアクセスできないRootlessディレクトリに「Updates」ディレクトリを追加しています。詳細は以下から。

　Appleは2015年10月にリリースしたOS X 10.11 El Capitanで、悪意のある攻撃者にmacOSの管理者権限(root)を取得されてもリカバリーモードから設定を解除するまで、全てのユーザーが対象のディレクトリに書き込むことができないセキュリティ整合性保護機能（SIP: System Integrity Protection）通称”Rootless”を導入しましたが、

日本時間2018年09月25日日にリリースされた「macOS 10.14 Mojave」では、このRootlessの対象となるディレクトリにSoftwareUpdateコマンド用のディレクトリが追加されています。

/Library/Updates

　SoftwareUpdateコマンドは名前の通りmacOSやファームウェア、音声、プリンタードライバなどのアップデートに利用され、”/Library/Updates”ディレクトリにその参照データが保存されますが、macOS 10.14 Mojaveのrootless.confにはこの、ディレクトリが追加され、root権限であっても書き込みができない状態になっています。

/System/Library/Sandbox/rootless.conf

おまけ

　また、macOS MojaveでiOSから移植されたホームとボイスメモ、ニュース、株価アプリとスクリーンショットアプリもRootlessの対象となっています。

Mojaveのrootless.conf

      
        				/Applications/App Store.app
      
        				/Applications/Automator.app
      
        				/Applications/Books.app
      
        				/Applications/Calculator.app
      
        				/Applications/Calendar.app
      
        				/Applications/Chess.app
      
        				/Applications/Contacts.app
      
        				/Applications/Dashboard.app
      
        				/Applications/Dictionary.app
      
        				/Applications/DVD Player.app
      
        				/Applications/FaceTime.app
      
        				/Applications/Font Book.app
      
        				/Applications/Game Center.app
      
        				/Applications/Home.app
      
        				/Applications/Image Capture.app
      
        				/Applications/Launchpad.app
      
        				/Applications/Mail.app
      
        				/Applications/Maps.app
      
        				/Applications/Messages.app
      
        				/Applications/Mission Control.app
      
        				/Applications/News.app
      
        				/Applications/Notes.app
      
        				/Applications/Photo Booth.app
      
        				/Applications/Photos.app
      
        				/Applications/Preview.app
      
        				/Applications/QuickTime Player.app
      
        				/Applications/Reminders.app
      
        				/Applications/Safari.app
      
        				/Applications/Siri.app
      
        				/Applications/Stickies.app
      
        				/Applications/Stocks.app
      
        				/Applications/System Preferences.app
      
        				/Applications/TextEdit.app
      
        				/Applications/Time Machine.app
      
        				/Applications/Utilities/Activity Monitor.app
      
        				/Applications/Utilities/AirPort Utility.app
      
        				/Applications/Utilities/Audio MIDI Setup.app
      
        				/Applications/Utilities/Bluetooth File Exchange.app
      
        				/Applications/Utilities/Boot Camp Assistant.app
      
        				/Applications/Utilities/ColorSync Utility.app
      
        				/Applications/Utilities/Console.app
      
        				/Applications/Utilities/Digital Color Meter.app
      
        				/Applications/Utilities/Disk Utility.app
      
        				/Applications/Utilities/Grab.app
      
        				/Applications/Utilities/Grapher.app
      
        				/Applications/Utilities/Keychain Access.app
      
        				/Applications/Utilities/Migration Assistant.app
      
        				/Applications/Utilities/Screenshot.app
      
        				/Applications/Utilities/Script Editor.app
      
        				/Applications/Utilities/System Information.app
      
        				/Applications/Utilities/Terminal.app
      
        				/Applications/Utilities/VoiceOver Utility.app
      
        				/Applications/VoiceMemos.app
      
        				/Applications/iTunes.app
      
        TCC				/Library/Application Support/com.apple.TCC
      
        CoreAnalytics			/Library/CoreAnalytics
      
        NetFSPlugins			/Library/Filesystems/NetFSPlugins/Staged
      
        NetFSPlugins			/Library/Filesystems/NetFSPlugins/Valid
      
        				/Library/Frameworks/iTunesLibrary.framework
      
        KernelExtensionManagement	/Library/GPUBundles
      
        MessageTracer			/Library/MessageTracer
      
        				/Library/Preferences/SystemConfiguration/com.apple.Boot.plist
      
        KernelExtensionManagement	/Library/StagedExtensions
      
        SoftwareUpdate			/Library/Updates
      
        				/System
      
        MobileAsset			/System/Library/Assets
      
        MobileAsset			/System/Library/AssetsV2
      
        *				/System/Library/Caches
      
        KernelExtensionManagement	/System/Library/Caches/com.apple.kext.caches
      
        *				/System/Library/Extensions
      
        				/System/Library/Extensions/*
      
        UpdateSettings			/System/Library/LaunchDaemons/com.apple.UpdateSettings.plist
      
        MobileAsset			/System/Library/PreinstalledAssets
      
        MobileAsset			/System/Library/PreinstalledAssetsV2
      
        *				/System/Library/Speech
      
        *				/System/Library/User Template
      
        				/bin
      
        ConfigurationProfilesPrivate	/private/var/db/ConfigurationProfiles/Settings
      
        cvms				/private/var/db/CVMS
      
        SystemPolicyConfiguration	/private/var/db/SystemPolicyConfiguration
      
        RoleAccountStaging		/private/var/db/com.apple.xpc.roleaccountd.staging
      
        datadetectors			/private/var/db/datadetectors
      
        dyld				/private/var/db/dyld
      
        timezone			/private/var/db/timezone
      
        *				/private/var/folders
      
        				/private/var/install
      
        				/sbin
      
        				/usr
      
        *				/usr/libexec/cups
      
        *				/usr/local
      
        *				/usr/share/man
      
        *				/usr/share/snmp
      
        # symlinks
      
        				/etc
      
        				/tmp
      
        				/var

view raw macOS 10.14 Mojave and macOS 10.13 High Sierra rootless.conf hosted with

by GitHub

macOS 10.14 Mojaveの新機能まとめ。

	/Applications/App Store.app
	/Applications/Automator.app
	/Applications/Books.app
	/Applications/Calculator.app
	/Applications/Calendar.app
	/Applications/Chess.app
	/Applications/Contacts.app
	/Applications/Dashboard.app
	/Applications/Dictionary.app
	/Applications/DVD Player.app
	/Applications/FaceTime.app
	/Applications/Font Book.app
	/Applications/Game Center.app
	/Applications/Home.app
	/Applications/Image Capture.app
	/Applications/Launchpad.app
	/Applications/Mail.app
	/Applications/Maps.app
	/Applications/Messages.app
	/Applications/Mission Control.app
	/Applications/News.app
	/Applications/Notes.app
	/Applications/Photo Booth.app
	/Applications/Photos.app
	/Applications/Preview.app
	/Applications/QuickTime Player.app
	/Applications/Reminders.app
	/Applications/Safari.app
	/Applications/Siri.app
	/Applications/Stickies.app
	/Applications/Stocks.app
	/Applications/System Preferences.app
	/Applications/TextEdit.app
	/Applications/Time Machine.app
	/Applications/Utilities/Activity Monitor.app
	/Applications/Utilities/AirPort Utility.app
	/Applications/Utilities/Audio MIDI Setup.app
	/Applications/Utilities/Bluetooth File Exchange.app
	/Applications/Utilities/Boot Camp Assistant.app
	/Applications/Utilities/ColorSync Utility.app
	/Applications/Utilities/Console.app
	/Applications/Utilities/Digital Color Meter.app
	/Applications/Utilities/Disk Utility.app
	/Applications/Utilities/Grab.app
	/Applications/Utilities/Grapher.app
	/Applications/Utilities/Keychain Access.app
	/Applications/Utilities/Migration Assistant.app
	/Applications/Utilities/Screenshot.app
	/Applications/Utilities/Script Editor.app
	/Applications/Utilities/System Information.app
	/Applications/Utilities/Terminal.app
	/Applications/Utilities/VoiceOver Utility.app
	/Applications/VoiceMemos.app
	/Applications/iTunes.app
	TCC /Library/Application Support/com.apple.TCC
	CoreAnalytics /Library/CoreAnalytics
	NetFSPlugins /Library/Filesystems/NetFSPlugins/Staged
	NetFSPlugins /Library/Filesystems/NetFSPlugins/Valid
	/Library/Frameworks/iTunesLibrary.framework
	KernelExtensionManagement /Library/GPUBundles
	MessageTracer /Library/MessageTracer
	/Library/Preferences/SystemConfiguration/com.apple.Boot.plist
	KernelExtensionManagement /Library/StagedExtensions
	SoftwareUpdate /Library/Updates
	/System
	MobileAsset /System/Library/Assets
	MobileAsset /System/Library/AssetsV2
	* /System/Library/Caches
	KernelExtensionManagement /System/Library/Caches/com.apple.kext.caches
	* /System/Library/Extensions
	/System/Library/Extensions/*
	UpdateSettings /System/Library/LaunchDaemons/com.apple.UpdateSettings.plist
	MobileAsset /System/Library/PreinstalledAssets
	MobileAsset /System/Library/PreinstalledAssetsV2
	* /System/Library/Speech
	* /System/Library/User Template
	/bin
	ConfigurationProfilesPrivate /private/var/db/ConfigurationProfiles/Settings
	cvms /private/var/db/CVMS
	SystemPolicyConfiguration /private/var/db/SystemPolicyConfiguration
	RoleAccountStaging /private/var/db/com.apple.xpc.roleaccountd.staging
	datadetectors /private/var/db/datadetectors
	dyld /private/var/db/dyld
	timezone /private/var/db/timezone
	* /private/var/folders
	/private/var/install
	/sbin
	/usr
	* /usr/libexec/cups
	* /usr/local
	* /usr/share/man
	* /usr/share/snmp
	# symlinks
	/etc
	/tmp
	/var