The current release of macOS High Sierra, version 10.13.1, has a bug that allows someone with physical access to your machine to bypass the log-in screen and access your data. The issue allows someone to authenticate as a “system administrator” with the ability to view files and change details in user accounts.
macOS’ underpinnings are the Darwin Unix distribution. And, like all Unix systems, there is a root user that has complete control over everything. This is a level of access that is well in excess of a normal admin account that is created when adding users on a Mac.
The bug was reported by Lemi Orhan Ergin who reached out to Apple over Twitter.
Dear @AppleSupport, we noticed a *HUGE* security issue at MacOS High Sierra. Anyone can login as “root” with empty password after clicking on login button several times. Are you aware of it @Apple?
— Lemi Orhan Ergin (@lemiorhan) November 28, 2017
According to The Verge, one way to thwart this low likelihood but high impact vulnerability is to change the root account password on your Mac. This is done by
- Open System Preferences and launch Users & Groups
- Go to Login Options, click on Join and then Open Directory Utility
- Choose the Edit option and Enable the Root User if you haven’t already
- Choose Change Root Password
Although Apple does run a bug bounty program, offering rewards of up to US$200,000, it’s invitation only unlike the wide open programs run by Microsoft, Google and others.
This flaw is significant but the risk to most users is quite low. In order to exploit the issue, a bad guy would need physical access to your Mac. And, as most security experts would attest, physical access will eventually trump any logical security you may have in place.
Leave a Reply
You must be logged in to post a comment.