Forums
New posts
Articles
Product Reviews
Policies
FAQ
Log in
Register
What's new
Search
Search
Search titles only
By:
New posts
Menu
Log in
Register
Install the app
Install
Forums
General Discussions
Security Awareness
macOS High Sierra bug allows Admin access without password
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="cwa107" data-source="post: 1778638" data-attributes="member: 24098"><p>It's yet another sign that MacOS (and likely the entire Mac lineup) is an afterthought at Apple today. It is frankly mind-boggling that such a simple flaw made it through what is presumably a mature QA process. Apple lost a lot of credibility on this one.</p><p></p><p>I changed my root password this morning after having no trouble replicating the flaw. The funny thing is that you have to "enable" root before you can even change the password, and then in-turn, disable it. More information here:</p><p></p><p><a href="https://support.apple.com/en-us/HT204012" target="_blank">https://support.apple.com/en-us/HT204012</a></p><p></p><p>I am also stunned that Apple didn't have a fix deployed within hours of the discovery. If we had such a severe security flaw in the wild at my company, developers wouldn't be leaving their cubicles until it was patched. This whole situation is very troubling for Apple.</p></blockquote><p></p>
[QUOTE="cwa107, post: 1778638, member: 24098"] It's yet another sign that MacOS (and likely the entire Mac lineup) is an afterthought at Apple today. It is frankly mind-boggling that such a simple flaw made it through what is presumably a mature QA process. Apple lost a lot of credibility on this one. I changed my root password this morning after having no trouble replicating the flaw. The funny thing is that you have to "enable" root before you can even change the password, and then in-turn, disable it. More information here: [url]https://support.apple.com/en-us/HT204012[/url] I am also stunned that Apple didn't have a fix deployed within hours of the discovery. If we had such a severe security flaw in the wild at my company, developers wouldn't be leaving their cubicles until it was patched. This whole situation is very troubling for Apple. [/QUOTE]
Verification
Post reply
Forums
General Discussions
Security Awareness
macOS High Sierra bug allows Admin access without password
Top