add warning about security policy

2025-01-09 13:41:33 -05:00 · 2024-08-13 06:42:02 -05:00 · 2024-08-13 06:42:02 -05:00 · 061a06cd08
commit 061a06cd08
parent 89cdf0f870
1 changed files with 1 additions and 1 deletions
--- a/content/posts/macos/macOS
+++ b/content/posts/macos/macOS
@ -77,7 +77,7 @@ On Apple Silicon Macs, it's combined with [Kernel Integrity Protection](https://
 Mac computers ensure that only Apple-signed code runs from the lowest levels of the firmware to macOS itself. It accomplishes this with a [chain of trust](https://support.apple.com/guide/security/boot-process-secac71d5623/web) that starts with the Boot ROM burned into the Secure Enclave at the factory as the first step.
-A unique feature of Mac computers is that you can set a different LocalPolicy for different installs, so you could have your main macOS with Full Security set and also an Asahi Linux install set to Permissive Security and it won't affect the security of your macOS.
+A unique feature of Mac computers is that you can set a different [security policy](https://support.apple.com/guide/security/startup-disk-security-policy-control-sec7d92dc49f/web) for different installs, so you could have your main macOS with Full Security set and also an Asahi Linux install set to Permissive Security and it won't affect the security of your macOS. Avoid lowering the security policy below Full Security for any operating system you require to be secure, even temporarily.
 ## DMA Protection