Security is highly important in this day and age. Especially on devices on which you have confidential or personal data stored. Wondering what I’m talking about? It is the bug in macOS High Sierra which allows anybody to bypass the root login by typing root and clicking on unlock twice without the need for the password. Now doesn’t that sound scary?
This is a major security concern, and if gone to the wrong hands, then your Mac data could be deleted or used for wrong purposes. If you are running macOS High Sierra 10.13.1, then you are susceptible to this flaw. Apple actually released a fix within 24 hours after the bug was found. You have to install the Security Update 2017-001. Follow the steps to install the update:
- Go to Apple menu, and click on App Store
- Click on the Updates tab to find the Security Update 2017-001
- Now finally click on Update button
The update applies to the Directory Utility application in macOS. There is no need to reboot Mac after the security update. Once the update is complete, macOS High Sierra will possess the build number 17B1002. And since the problem seemed serious, Apple started to automatically push the update. So if you want to check if the update is present in your Mac system, then follow these steps:
- First go to Apple menu, and click on About This Mac
- Under macOS High Sierra, click the Version text
- You can see the Build number which appears beside version, now verify the same
- Alternatively, you can use Terminal and type sw_vers
So if the version you see is prior to 17B1002, then you have to manually install the fix. If the version is the same, then you are good to go. The next thing to do is to create a root password to prevent any unauthorized access.
Here are the steps to change the root password using the command line:
- In the Terminal, type sudo passwd root
- Authenticate using the admin password, then click on Return
- Next type a new password and hit Return
- Retype the password to confirm and hit Return
It is advised to create a strong password. So once the password is changed, you don’t have to worry about this security bug. Hope these tips help in safeguarding against macOS High Sierra Root Login security bug. Suppose, unfortunately, you have lost data from macOS High Sierra, then you don’t have to worry. You can use Mac Data Recovery tool to restore lost data. Even data lost after upgrading to macOS Sierra, after reinstalling Mac OS, etc., can be recovered in a safe and easy manner with this software.