Updating to macOS 10.13.1 Undoes Apple's 'Root' Bug Patch

Share

You'd think that would be the end of Apple's software troubles for this week, but you'd be wrong. But he found that, until he rebooted, he could even then type "root" without a password to entirely bypass High Sierra's security protections. "And worse, two of those Mac users say they've also tried re-installing Apple's security patch after that upgrade, only to find that the "root" problem still persists until they reboot their computer, with no warning that a reboot is necessary". "I can't think of anything worse that has been shipped by a major operating system in the past decade".

The solution is a simple one - but one that has not been made sufficient clear by Apple.

One small bright spot may be that the vulnerability requires local access and appears hard, though not impossible, to exploit remotely.

Pontiac Silverdome still standing after failed implosion
The stadium also hosted a record crowd of almost 93,000 in September 1987, when a mass was celebrated by Pope John Paul II . But about an hour after the implosion , they said the charges on the main support columns failed to detonate.

Soon after the discovery of the vulnerability, an Apple representative told reporters MacRumors that the company is aware of the issue and is working on a software update to fix it. That would permit unfettered access to the file system for a Mac, exposing private documents on that particular computer. It has been confirmed that the issue exists in the High Sierra version of the operating system.

Affected users can change their root password as a fix in the meantime. To do this in the settings section "Users and groups" click on the button with a lock.

While Apple was commended for its overnight fix of the critical macOS root security hole earlier this week, updates that are developed so quickly rarely come without issues. A user responding to a question about creating an admin account in the operating system noted on November 13 that one solution was to log in at startup with the username "root" and an empty password.

Phase One of Chabahar Port to be Inaugurated
Currently, 100,000-ton ships are capable of mooring, and this can play a significant role in the import and export of basic goods. India had been looking after the development of the Chabahar port as the Iranian government was focusing on its second phase.

The vulnerability was disclosed by a user on Tuesday on Twitter. "This is really REALLY bad".

It's believed that the first time you click Unlock the root account is enabled and the second time you click unlock you gain access.

Apple seems to be doing badly in ensuring Macs are secure.

Kaepernick named victor of Sports Illustrated's Muhammad Ali Legacy Award
The honor was not meant to become an annual award, but it has been each year since 2014, when Magic Johnson was honored. On Thursday, Sports Illustrated announced Kaepernick as the victor of its prestigious 2017 Muhammad Ali Legacy Award .

Share