Enabling CFNetwork diagnostic logging now requires SIP to be disabled in macOS 13.4.
privacy
What’s blocking you from saving that document: permissions, ACLs, privacy, an extended attribute, or what? Here are some clues.
In the two years since we’ve been waiting for Apple to provide an option to opt out of online certificate and notarization checks, Apple has added two enhanced security modes, but not addressed the original issue.
A revamped configuration profile to remove censored private data from log entries, and how to get network diagnostic data too.
Full details of 27 subsystems in macOS that TCC gave access to CloudKit despite there being no Apple ID or iCloud account.
Never work with children, animals or TCC. Its interface sprawls over two sections in System Settings, and its command tool can only wipe out its settings, forcing you to start from scratch.
There’s a lot standing between your app and what it can edit and save: POSIX permissions, ACLs, SIP, TCC, and maybe the sandbox too.
Untangling what in Privacy & Security is controlled by TCC, what resetting it really does, why you should do that before selecting it database, and what TCC does for iCloud.
Privacy, controlled by TCC and the Privacy & Security settings, can go wrong. Without documentation or good tools, it can prove hard to fix.
On T2 and M1 Macs, FileVault provides robust protection of the Data volume on internal storage without any performance penalty.