Re: question.....
Re: question.....
- Subject: Re: question.....
- From: Nigel Smith <email@hidden>
- Date: Fri, 21 May 2004 17:07:16 +0100
On 21/5/04 16:18, "John C. Welch" <email@hidden> wrote:
>
> *Any* user with an administrator account can, with a bit of know-how, change
>
> the root password to whatever they want -- without knowing the original.
>
>
Right...that's what I said. But it's an easily preventable problem.
No, you said any admin user can enable the account. I'm saying that any user
with an admin account and a bit of know-how -- nothing else, no system cd,
no external drive, no keyfob RAM disk -- can take over the root account of a
machine regardless of whether it already has a passworded root account.
Slightly different, and a lot more difficult to defend against.
Nigel
_______________________________________________
applescript-users mailing list | email@hidden
Help/Unsubscribe/Archives:
http://www.lists.apple.com/mailman/listinfo/applescript-users
Do not post admin requests to the list. They will be ignored.