- Joined
- Jul 21, 2017
- Messages
- 2
- Motherboard
- Gigabyte Z270X-UD5
- CPU
- 7700K
- Graphics
- 1070
- Mac
- Mobile Phone
Hi All --
First post ever! I've been reading this forum for many months and planning to dive into a hackintosh for a while. Will probably pull the trigger later this year after I see how High Sierra / X299 / iMac Pro shake out. In the meantime, I'm on my trusty 2008 Mac Pro that I swear has begun cursing at me every time I turn it on.
This is probably a loaded topic, but I'm writing to get a better handle on security implications of moving to a hack. I'm a little on the paranoid side - I go back and forth whether that's a bug or feature in me. Here are a few thoughts and questions:
1. On SIP. My understanding is that turning if off (0x67) during install, post-install, updates, etc is very helpful, if not necessary, and that turning it on completely (0x00) is also doable with the potential complication of having to rebuild the kext cache at perhaps unforeseeable times. Is this reasonably accurate - are there other implications? I realize that there are many opinions on the effectiveness of SIP, but are there folks here that successfully use a hack with SIP at 0x00 during regular day-to-day use?
2. Firmware. Am sure most of you have seen the news these past few days and the potential risk of Macs not using the latest firmware. My understanding is that since a hack is BIOS based, not EFI, there is no issue here, per se. Clover could theoretically have rogue code in it - as well as BIOS updates, but that would be a separate issue. Not sure what could be done to address any potential risk here except checksumming downloads or compiling the source code before an update.
3. Unsigned kexts. From my reading, it seems impossible to get around only using signed kexts.
Are there other security thoughts or concerns that have been discussed? Appreciate the help as I consider taking the plunge!
First post ever! I've been reading this forum for many months and planning to dive into a hackintosh for a while. Will probably pull the trigger later this year after I see how High Sierra / X299 / iMac Pro shake out. In the meantime, I'm on my trusty 2008 Mac Pro that I swear has begun cursing at me every time I turn it on.
This is probably a loaded topic, but I'm writing to get a better handle on security implications of moving to a hack. I'm a little on the paranoid side - I go back and forth whether that's a bug or feature in me. Here are a few thoughts and questions:
1. On SIP. My understanding is that turning if off (0x67) during install, post-install, updates, etc is very helpful, if not necessary, and that turning it on completely (0x00) is also doable with the potential complication of having to rebuild the kext cache at perhaps unforeseeable times. Is this reasonably accurate - are there other implications? I realize that there are many opinions on the effectiveness of SIP, but are there folks here that successfully use a hack with SIP at 0x00 during regular day-to-day use?
2. Firmware. Am sure most of you have seen the news these past few days and the potential risk of Macs not using the latest firmware. My understanding is that since a hack is BIOS based, not EFI, there is no issue here, per se. Clover could theoretically have rogue code in it - as well as BIOS updates, but that would be a separate issue. Not sure what could be done to address any potential risk here except checksumming downloads or compiling the source code before an update.
3. Unsigned kexts. From my reading, it seems impossible to get around only using signed kexts.
Are there other security thoughts or concerns that have been discussed? Appreciate the help as I consider taking the plunge!
