MacBlog

Managing Macs at Scale

Articles

Off Root

Some quick notes on yesterday’s root privilege escalation vulnerability. Apple Released a Fix Security Update 2017-001 was released around 8am PST on November 29, 2017. This update resolves the issue leading to the privilege escalation. Installing the update recompiles and reinstalls opendirectoryd. The update does not require a reboot. The update also disables root again. While waiting on this fix, the smart move was to enable root and configure a strong password on the account.

Continue reading ❭