Dear @AppleSupport, we noticed a *HUGE* security issue at MacOS High Sierra. Anyone can login as "root" with empty password after clicking on login button several times. Are you aware of it @Apple?
Show this thread
You can access it via System Preferences>Users & Groups>Click the lock to make changes. Then use "root" with no password. And try it for several times. Result is unbelievable!pic.twitter.com/m11qrEvECs
-
-
HOLY SMOKES, I just got my Mac mini to do it. My jaw is on the floor. I can't believe this.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@halilozturkci haberin vardi ve@MertSARICA soylemedin degil mi :) -
This Tweet is unavailable.
- Show replies
New conversation -
-
-
@AppleSupport@Apple confirmed .. 10.13.1Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
omfg it worked.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Not functional on Sierra 10.12.6
-
Confirmed High Sierra 10.13
- Show replies
New conversation -
-
-
Holy crap - what the hell. It works basically everywhere. Even with Firewall and FileVault
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Oh my various gods and goddesses this is bad. BAD
@Apple!Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Cannot reproduce on High Sierra when logged into a non-root admin account, fwiw (dialog says "enter your password" not "enter an administrator's name and password")
-
- Show replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.