Author Topic: Apple, crni Apple  (Read 99 times)

uporna_neznalica

  • Sr. Member
  • ****
  • Posts: 450
Apple, crni Apple
« on: December 11, 2017, 03:13:55 pm »
https://threatpost.com/apple-announces-emergency-patch-to-fix-high-sierra-login-bug/129039/?utm_source=Unsupervised+Learning+Subscribers&utm_campaign=2559971046-October+22%2C+2017+Newsletter&utm_medium=email&utm_term=0_49fdb7d723-2559971046-455217649&mc_cid=2559971046&mc_eid=bcb341e16f

Quote
Apple said on Wednesday that it will rush an emergency patch to users that fixes an embarrassing login bug in its High Sierra operating system. The patch is expected to be pushed out by Apple sometime Wednesday, according to a company spokesperson.

The serious High Sierra login bug surfaced Tuesday, giving anyone with physical access to a computer running the latest version of the operating system admin access simply by putting ?root? in the user name field.

...

?This security issue appears to be both an unsecured default setting that shipped with the MacOS release and a flaw in the functionality of the software component that prevents one from disabling the root account,? said Chris Carlson, VP of product management at Qualys.  ?The mitigation, until Apple releases a patch, is to create a secure password for the root account.?