Mac OS X Lion Password Flaw Lets Hackers Make Changes With Ease

Discussion in 'Misc' started by Jim_Higgins, Sep 20, 2011.

  1. Jim_Higgins

    Jim_Higgins Guest

    Jim_Higgins, Sep 20, 2011
    #1
    1. Advertisements

  2. In article <j5atsj$f05$>,
    Jim_Higgins <> wrote:

    > Mac OS X Lion Password Flaw Lets Hackers Make Changes With Ease
    > http://www.huffingtonpost.com/2011/09/20/mac-os-x-lion-password_n_971469.html


    The short story is that Directory Service is not protecting the password
    in 10.7:

    dscl localhost -passwd /Search/Users/$USER

    In 10.6, you get a permissions error and a password prompt to complete
    the change. In 10.7, it works with no challenge.
    --
    I will not see posts from Google because I must filter them as spam
     
    Kevin McMurtrie, Sep 22, 2011
    #2
    1. Advertisements

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Newsbot
    Replies:
    0
    Views:
    604
    Newsbot
    Oct 28, 2006
  2. Newsbot

    Checkout Lets You 'Get a Mac, Start a Store'

    Newsbot, Jun 22, 2007, in forum: Apple Developer News
    Replies:
    0
    Views:
    580
    Newsbot
    Jun 22, 2007
  3. juanarias
    Replies:
    0
    Views:
    149
    juanarias
    Mar 4, 2008
  4. dorayme
    Replies:
    5
    Views:
    265
    dorayme
    Sep 26, 2011
  5. juanarias
    Replies:
    1
    Views:
    148
    nospamatall
    Mar 5, 2008
  6. juanarias
    Replies:
    0
    Views:
    123
    juanarias
    Mar 4, 2008
  7. Woody

    Mac Hackers Handbook

    Woody, Feb 6, 2010, in forum: UK Macs
    Replies:
    3
    Views:
    165
    James Taylor
    Feb 6, 2010
  8. chris

    Serious LDAP flaw in Lion

    chris, Aug 29, 2011, in forum: UK Macs
    Replies:
    6
    Views:
    224
    Chris Ridd
    Sep 1, 2011
Loading...