News MacOS High Sierra hit by major security vulnerability

Discussion in 'Article Discussion' started by bit-tech, 29 Nov 2017.

  1. bit-tech

    bit-tech Supreme Overlord Staff Administrator

    Joined:
    12 Mar 2001
    Posts:
    550
    Likes Received:
    11
    Read more
     
  2. Ramble

    Ramble Ginger Nut

    Joined:
    5 Dec 2005
    Posts:
    5,550
    Likes Received:
    31
    Oops.
     
  3. RedFlames

    RedFlames ...is not a Belgian football team

    Joined:
    23 Apr 2009
    Posts:
    8,121
    Likes Received:
    378
    This is what happens when, by all accounts, the macOS dev team now consists of Siri, the mail guy and an intern who got lost.

    That and Apple's well-known stance on issues like this of 'ignore it and hope no-one notices'.
     
  4. jb0

    jb0 Member

    Joined:
    8 Apr 2012
    Posts:
    218
    Likes Received:
    4
    Look on the bright side: What with the Intel Management Engine omnihack, no one has a REASON to use this one.

    But no, Apple's finding out that security through obscurity doesn't work once you outgrow a niche, and that they aren't really that good at security through design.
    I'm still trying to figure out the old "API to let any program give itself root privileges automatically." I mean, I know WHY it existed(so users didn't have to enter a password every time they touched the control panel). I've just never figured out why Apple thought it was a good idea, or why it wasn't configured with a whitelist so ONLY allow the control panel binaries could use it.
     
Tags: Add Tags

Share This Page