Forums
New posts
Articles
Product Reviews
Policies
FAQ
Log in
Register
What's new
Search
Search
Search titles only
By:
New posts
Menu
Log in
Register
Install the app
Install
Forums
General Discussions
Security Awareness
macOS High Sierra bug allows Admin access without password
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="Lifeisabeach" data-source="post: 1778595" data-attributes="member: 38864"><p><strong>MASSIVE security hole uncovered in High Sierra!!!!!</strong></p><p></p><p>There is a very serious security flaw just uncovered in High Sierra that lets a user enable root by simply entering "root" as the user name and hitting the "enter" key with no password entered until it takes. If you have remote access enabled, you risk being remotely hacked. Malicious app that knows this trick? Hacked. Someone sitting in front of your Mac that wants in? Hacked. The flaw can be sidestepped by enabling the root user yourself and setting a password up. I've always done this in the past, but completely forgot about it the last time I did a clean install (which was Sierra). Only High Sierra is affected. Read the details in the article below.</p><p></p><p><a href="https://arstechnica.com/information-technology/2017/11/macos-bug-lets-you-log-in-as-admin-with-no-password-required/?comments=1&start=0" target="_blank">macOS bug lets you log in as admin with no password required</a></p></blockquote><p></p>
[QUOTE="Lifeisabeach, post: 1778595, member: 38864"] [b]MASSIVE security hole uncovered in High Sierra!!!!![/b] There is a very serious security flaw just uncovered in High Sierra that lets a user enable root by simply entering "root" as the user name and hitting the "enter" key with no password entered until it takes. If you have remote access enabled, you risk being remotely hacked. Malicious app that knows this trick? Hacked. Someone sitting in front of your Mac that wants in? Hacked. The flaw can be sidestepped by enabling the root user yourself and setting a password up. I've always done this in the past, but completely forgot about it the last time I did a clean install (which was Sierra). Only High Sierra is affected. Read the details in the article below. [URL="https://arstechnica.com/information-technology/2017/11/macos-bug-lets-you-log-in-as-admin-with-no-password-required/?comments=1&start=0"]macOS bug lets you log in as admin with no password required[/URL] [/QUOTE]
Verification
Post reply
Forums
General Discussions
Security Awareness
macOS High Sierra bug allows Admin access without password
Top