Mac OS X Lion Password Flaw Lets Hackers Make Changes With Ease

Discussion in 'Misc' started by Jim_Higgins, Sep 20, 2011.

  1. Jim_Higgins

    Jim_Higgins Guest

    Jim_Higgins, Sep 20, 2011
    #1
    1. Advertisements

  2. The short story is that Directory Service is not protecting the password
    in 10.7:

    dscl localhost -passwd /Search/Users/$USER

    In 10.6, you get a permissions error and a password prompt to complete
    the change. In 10.7, it works with no challenge.
     
    Kevin McMurtrie, Sep 22, 2011
    #2
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.