Re: [Full-disclosure] Apple Lion OS Suffers From A Major Security Issue

On 21 Sep 2011, at 17:14, Thor (Hammer of God) wrote:
FYI

Yep, he already told us.

Don't run as admin, you're fine. And change the permissions of the dscl binary to 0100 root:wheel if you can't trust yourself not to run malicious code. It wants fixing, though.

Cheers,
Sabahattin

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Relevant Pages

  • Re: Moving DCs From Default OU ?
    ... servers over to a third-party, it means you decide to trust them. ... Nothing can block an Admin from gaining access, ... although I don't have permissions I can change them back so I do ...
    (microsoft.public.windows.server.active_directory)
  • Re: What permissions do I need to use admin$ ?
    ... >> If in a domain you need domain admin permissions. ... > It is on a domain, I am a domain admin of another domain. ... You do NOT want to give users access to C$, ADMIN$ or other $ resources. ... but if you setup the TRUST between the domains ...
    (microsoft.public.windowsxp.security_admin)
  • Re: More security questions
    ... You shouldn't be logging in as Admin, ... have permissions to do anything. ... Usernames/passwords/group membership are stored in the mdw. ... Microsoft Access MVP ...
    (microsoft.public.access.security)
  • Re: NTFS owner problem
    ... power options, ... permissions that control access. ... to which any admin account should have full access. ...
    (microsoft.public.windowsxp.security_admin)
  • RE: Any way to remove ADMIN$ only?
    ... partition to allow you to set local permissions. ... Network Security Specialist ... Any way to remove ADMIN$ only? ... default security of Windows drives. ...
    (Focus-Microsoft)