Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

The issue is that the bug leaves a password-less root account available through other means as well. Once you try to reproduce the bug, an attacker could potentially do a remote root login without password.

As such, it's very dangerous for people to try to verify and should be strongly discouraged.



On most systems, root without password isn't available remotely. Is this not true on OSX?


Apparently, High Sierra has a 'feature' that updates hashes to a new format on login, and consequently publishes a hash where there was none before. Which pretty much disables the 'no hash, no login' policies. Ooops. Donno if that's unique to the GUI, or if a simple 'sudo su -' would also trigger, as I don't own a mac.


If you have remote login enabled does root/no password not work already because of the bug? It apparently does from the login screen if you have username/password mode on, so I wouldn't be surprised if it worked over remote login by default.


Does not work via ssh or screen sharing based on my testing here. Seems to require physical access to the machine.


Does seem to work with some software: https://mobile.twitter.com/patrickwardle/status/935639234437...


No, it doesn't work for remote login.




Consider applying for YC's Winter 2026 batch! Applications are open till Nov 10

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: