UPDATED 23:10 EDT / NOVEMBER 28 2017

INFRA

How to protect your computer from the macOS High Sierra security flaw

Update – Nov. 30: Apple Inc. was quick off the mark to provide a security update for the root vulnerability discovered earlier this week, but after updating, users started reporting that the update broke file sharing. Apple has subsequently reissued the security update to fix the issue. If you previously installed the security update, you will need to go back to the App Store app on your Mac and check for updates. The security update will be listed again as if you never installed it. Select it to install the update again and the file-sharing issue will be fixed.

Update – Nov. 29: Apple Inc. has responded promptly to the macOS High Sierra security flaw discovered Tuesday with the release of a security update. The security update is available in the Mac App Store for users running macOS High Sierra 10.13.1. The root vulnerability has not affected earlier versions of the operating system (macOS High Sierra 10.12.6 and earlier). If you are running a beta version of macOS 10.13.2, a fix is not available yet.

A security flaw has been discovered in Apple Inc.’s macOS High Sierra that allows anyone gain administrator access to a Mac.

For any users running the latest operating system, their Macs can be vulnerable to hackers and once these hackers gain access they can log back into a locked device at any time. The vulnerability was discovered by Lemi Orhan Ergin, the founder of Software Craftsmanship Turkey, who tweeted Apple Support Tuesday.

Although a hacker would initially need to have physical access to an unlocked computer, they would then be able to gain root-user access while in the “Users & Groups” section of “System Preferences,” by typing “root” into the “User Name” field, leaving the password field blank and clicking “unlock” several times. The hacker could then return at any time and log in as the admin.

This isn’t the first time that Apple’s latest operating system has been plagued by a password security vulnerability. In October, the company released a patch for a flaw discovered the previous month that allowed unsigned apps to capture plain-text passwords from the Mac keychain.

The latest security flaw gets worse for any vulnerable machine that also has screen sharing enabled. According to the tweets below, these machines are also reportedly vulnerable remotely.

Steps to protect your computer

Apple is currently working to issue a fix for the security flaw, according to the company’s statement, but in the meantime, the company has provided instructions on how users can enable a root user and set a password so that their computer remains protected.

Enable or disable the root user

First up, you will need to follow the below instructions to enable or disable the root user:

Select the Apple menu > System Preferences > Users & Groups (or Accounts) > click the lock icon and enter an administrator name and password > Login Options > click Join (or Edit) > Open Directory Utility. In the Directory Utility window, click the lock icon and enter an administrator name and password. In the Directory Utility menu bar, either select Edit > Enable Root User > enter the password you want to use. Or select Edit > Disable Root User.  

Change the root password

However, Apple goes on to say that if a root user is already enabled, you will need to follow the instructions below, to ensure a blank password isn’t set.

To change the root password, select the Apple menu > System Preferences > Users & Groups (or Accounts) > click the lock icon and enter an administrator name and password > Login Options > click Join (or Edit) > Open Directory Utility. In the Directory Utility window, click the lock icon and enter an administrator name and password. In the Directory Utility menu bar, select Edit > Change Root Password > enter a root password.

Image: Apple

A message from John Furrier, co-founder of SiliconANGLE:

Your vote of support is important to us and it helps us keep the content FREE.

One click below supports our mission to provide free, deep, and relevant content.  

Join our community on YouTube

Join the community that includes more than 15,000 #CubeAlumni experts, including Amazon.com CEO Andy Jassy, Dell Technologies founder and CEO Michael Dell, Intel CEO Pat Gelsinger, and many more luminaries and experts.

“TheCUBE is an important partner to the industry. You guys really are a part of our events and we really appreciate you coming and I know people appreciate the content you create as well” – Andy Jassy

THANK YOU