With SIP shutting down the X-Protect hack we've been using, and with Apple archiving this article, what's everyone doing to block updates for the usual cr@ppy internet plugins like QuickTime, Flash, Shockwave, and Java?

@rtrouton's excellent article points to some awesome community feedback, but setting internet plug-ins to PlugInPolicyAllowNoSecurityRestrictions (Allow Always) makes me cringe...seems like we're jumping from one rabbit hole to another.

Seems like this is how Apple wants us to manage these alerts...am I missing something?

Don