Ranter
Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Comments
-
D--M22687yWe were pretty shocked to hear about it, but we tried it on an unsuspecting victims machine, worked fucking flawlessly.
The best part is, by default the firewall is off too hahaha -
Root825587yI can finally ssh into my coworkers lappies and mute their sound!
(Well, this makes it easier.) -
flag020327yBecause by default root has no password. And that's just stupid. If this has been the case for all macOS releases I'm surprised it wasn't uncovered until now. If they changed it in high sierra I want to know what's the reason behind it. This is system working as intended but default configuration being bad.
-
elazar10307y@Alice There are security flaws, there are horrible security flaws, and then there are FUCKING WOT??? flaws.
-
What's weird to me is to fix this problem you need to enable root login and then change root password. That would mean before you enable root login, it is actually enabled behind the scene. So they must have done sth like hard code the default login config which gets shown to user, which is seriously stupid.
-
Apple is known to "borrow" ideas from others, so they copied MS "feature" from, I don't know, 15 years ago? ;)
Related Rants
Wait, there is a bug in high sierra making it possible to log in as root without a password. What the fuck? How does this shit even happen?
undefined
security
apple is good