Apparently there appears to be a vulnerability where you can authenticate with root user and no password.
Jump to content
Apple always brings the best user experience, this time it's a vulnerability even a 5 year old can exploit.
For now as countermeasure just change the root user's password with:
Has anyone here tried it? I know they say you shouldn't, but it seems harmless as long as you set a root password.
MacOS came always with root account without password. It was always deactivated though, and one would always activate it explicitly.
Fixed, with a new update 10.13.1 (17B1002). No restart required.
came the patch
0 members, 0 guests, 0 anonymous users