macOS High Sierra 10.13.2 beta 6 includes a fix for root password vulnerability
When it arrives, macOS High Sierra 10.13.2 will include safeguards to prevent root access with a blank password.
Root
Apple releases macOS High Sierra update fixing root password vulnerability
Wow, that was fast!
Dangerous macOS High Sierra bug allows full admin access, here is how to protect your Mac
The vulnerability can easily be replicated, but fortunately, there is a simple workaround to fix the problem on your Mac until Apple releases a patch.
About OS X System Integrity Protection aka ‘Rootless’ and how to disable it
All Macs with OS X El Capitan installed on them have a new layer of security known as System Integrity Protection, which has been given the nickname ‘Rootless’ because it closes off a lot of system files to user access to prevent malicious programs and code from causing harmful changes to the core of OS X.
For some, the added security feels like a must for protection of your personal information, but for more advanced users who poke their noses into system files quite often, the feature can get in the way and prevent user modifications to the operating system. In this tutorial, we’ll give you an overview of System Integrity Protection and show you a way to disable it.
Mobile Terminal now works on jailbroken iOS 9 devices
Good news for all of you Mobile Terminal fans, or for anyone interested in easily changing their jailbroken iOS device’s root password. Saurik just pushed an update for PAM Modules on Cydia, which was a prerequisite for terminal access.
All you need to do is go out to Cydia and update to PAM Modules 36.1. Cydia should automatically prompt you for the update, since this package is installed by default. Once you update, you can download Mobile Terminal, or any terminal emulator on Cydia that you prefer.
TaiG 2.2.1 released with setreuid patch and stability improvements
After a false start earlier this morning with an update to its iOS 8.4 jailbreak tool, TaiG has officially released version 2.2.1.
This update is security oriented, as it contains the setreuid patch to prevent applications from obtaining to root privileges through setreuid. The update also contains stability improvements. If you’ve yet to jailbreak your iOS 8.4 device, it is recommended that you use this latest version of TaiG’s tool, version 2.2.1.
iOS 9 security & jailbreaking: there’s no such thing as impossible
Recent reports are claiming that Apple’s upcoming iOS update—iOS 9—will make it more difficult to jailbreak iPhones and iPads going forward. Some are even stating that it will be nearly impossible to jailbreak an iPhone running iOS 9.
The reason? Rootless—the kernel-level security feature that was discussed earlier today. This new feature is said to prevent malware, increase the safety of extensions and preserve the security of sensitive data.
When it’s all said and done, Apple’s security efforts in iOS 9 appear to be its most prolific since iOS 5. It could make it more of a challenge for jailbreakers and hackers.
But impossible? There’s nothing that’s impossible when it comes to security. More difficult? Perhaps. More challenging? Maybe. But impossible?