[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

absurd MacOS High Sierra bug

Subject: absurd MacOS High Sierra bug
From: edwardlow at riseup.net (Edward Low)
Date: Wed, 29 Nov 2017 16:24:27 +0100
In-reply-to: <[email protected]>
References: <[email protected]>

Lol time to visit Apple Store


El 29/11/17 a las 16:03, John Newman escribiÃ³:
> https://it.slashdot.org/story/17/11/28/2135236/macos-high-sierra-bug-allows-login-as-root-with-no-password
>
>
> The title pretty much says it all - you can login as root with no
> password, or elevate to root privileges to make system changes with
> no password, on all the current MacOS High Sierra releases. There
> is a work around (I think you simply have to enable the root account,
> with a password), but man..  wtf !?
>
> It shouldn't affect sshd - PermitRootLogin defaults to no. However
> it does appear to affect VNC / Apple Remote Desktop connections.
> LOL! How does something like this get past QA ?
>

References:
- absurd MacOS High Sierra bug
  - From: jnn at synfin.org (John Newman)

Prev by Date: absurd MacOS High Sierra bug
Next by Date: absurd MacOS High Sierra bug
Previous by thread: absurd MacOS High Sierra bug
Next by thread: absurd MacOS High Sierra bug
Index(es):
- Date
- Thread