Updating imac 3

But he noted that rebooting the computer—after updating to 10.13.1 and then re-installing the security fix—did cause the security update to finally kick in and resolve the issue, which Malware Bytes' Reed confirmed.

updating imac 3-75

Earlier this week, Apple scrambled to push out a software update for mac OS High Sierra, to sew up a glaring hole in the operating system's security measures: When any person or malicious program tried to log into a Mac computer, install software, or change settings, and thus hit a prompt for a username and password, they could simply enter "root" as a username, no password, and bypass the prompt to gain full access to the computer.

Apple's initial patch came out about a 18 hours after the bug was first reported.

After Reed confirmed that 10.13.1 reopened the "root" bug, he again installed Apple's security fix for the problem.

But he found that, until he rebooted, he could even then type "root" without a password to entirely bypass High Sierra's security protections."I installed the update again from the App Store, and verified that I could still trigger the bug. "Anyone who hasn't yet updated to 10.13.1, they’re now in the pipeline headed straight for this issue."Mac administrator Chris Franson, a technical director at Northeastern University, tells WIRED that he repeated that sequence of events and found that the "root" bug persisted, too.

But now multiple Mac users have confirmed to WIRED that Apple's fix for that problem has a serious glitch of its own.

Those who had not yet upgraded their operating system from the original version of High Sierra, 10.13.0, to the most recent version, 10.13.1, but had downloaded the patch, say the "root" bug reappears when they install the most recent mac OS system update.

Another facepalm-worthy bug displayed the user's password as a password hint when someone tries to unlock an encrypted partition on their machine known as an APFS container.

Even the fix for this week's "root" bug has already hit snafus before this more serious one presented itself.

Apple had already issued a rare apology for the "root" security flaw, writing that its "customers deserve better" and promising to audit its development practices to prevent similar bugs in the future.

Tags: , ,