High Sierra security advisory: set your root account password

Chris Jones jonesc at hep.phy.cam.ac.uk
Wed Nov 29 20:51:32 UTC 2017


A security patch is now available, so the work around is no long needed. See



> On 29 Nov 2017, at 12:42 am, Ryan Schmidt <ryandesign at macports.org> wrote:
> A vulnerability was discovered in macOS High Sierra (10.13, 10.13.1, 10.13.2 beta) today that allows an attacker to gain root access to your system if your root account is disabled and has no password set (which is the default). If you are running High Sierra, please mitigate this attack by enabling your root account and setting a strong password for it.
> https://support.apple.com/en-us/HT204012
> https://www.macrumors.com/2017/11/28/macos-high-sierra-bug-admin-access/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.macports.org/pipermail/macports-users/attachments/20171129/12b12efb/attachment.html>

More information about the macports-users mailing list