![]() ![]() We are working on a software update to address this issue. It didn’t work on a 10.13 (17A365) machine, but that one is also loaded up with AOL bloatware - sorry, Oath bloatware - which may affect things. So far this has worked on every preference panel we’ve tried, and when I used “root” at the login screen it immediately created and pulled up a new user with system administrator privileges. Do not leave your Mac unattended until this is resolved. You can add administrators, change critical settings, lock out the current owner, and so on. Once you log in, you’ve essentially authenticated yourself as the owner of the computer. Needless to say, this is incredibly, incredibly bad. The bug appears to have been first noticed by Lemi Orhan Ergin, founder of Software Craftsman Turkey, who noted it publicly on Twitter. ![]() Doing so creates a “root” account that others may be able to take advantage of if you don’t disable it. There’s no need to do this yourself to verify it. After a few tries, it should log right in. No need to do that any more! Just enter “root” instead of your user name and hit enter. Normally you’d click that to enter your user name and password, which are required to change important settings like those in Security & Privacy. The bug is most easily accessed by going to Preferences and then entering one of the panels that has a lock in the lower left-hand corner. Apple will fix it probably within hours, but holy moly. On Macs running the latest version of High Sierra - 10.13.1 (17B48) - it appears that anyone can log in just by putting “root” in the user name field. Update: Apple has acknowledged the issue and is working on it. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |