As noted in a tweet by Lemi Orhan Ergin in November of 2017, there apparently is a big security issue in the Users and Groups area of Mac OS X High Sierra (it doesn’t appear to happen in earlier versions of Mac OS X).
Here’s the gist of the problem that Lemi Orhan Ergin found:
“We noticed a *HUGE* security issue at MacOS High Sierra. Anyone can login as “root” with empty password after clicking on login button several times.”
Fortunately, there is an easy fix until this gets patched (which may have already happened in the upcoming Mac OS X 10.13.2 beta). The fix is to assign a strong password to the built-in root account by following the instructions given by Apple here. In essence, you have to perform the following steps:
Choose Apple menu () > System Preferences, then click Users & Groups (or Accounts).
Click , then enter an administrator name and password.
Click Login Options.
Click Join (or Edit).
Click Open Directory Utility.
Click in the Directory Utility window, then enter an administrator name and password.
From the menu bar in Directory Utility:
Choose Edit > Enable Root User, then enter the password that you want to use for the root user.
You can also set a password with the Terminal by typing in ‘sudo passwd -u root’ and hitting return.
Are you having trouble logging into Gmail on an older iOS device like an iPad or iPhone? I had this issue a few minutes ago where I was trying to put in my Gmail password, which I verified was correct, and it kept telling me my username or password were incorrect. After further digging, I found out that Google considers the older iOS mail software used on an iPad or iPhone as “unsecure,” and blocks it.
Here’s the fix to allow Gmail on your older iPad or iPhone.
Secondly, and even more important, visit this website: Allow less secure apps and choose “Allow” to let less secure apps access your Google account. This is a less secure option, but, it may be the only way to get your older iPad or iPhone mail software to allow access to Gmail.
There’s another new scam going around that appears to be from places such as “katzweb.net” and other sites telling you that your AppleID account has been “frozen,” and that you should “verify your account.” This is complete nonsense and a horrible “phishing” attempt. Phishing is when a person or company that is not the real person or company attempts to get private and sensitive information from you, such as credit card numbers or social security numbers. This is NOT real and you should NEVER give your personal data away in these instances. Unless you are directly talking to an Apple employee (via the Apple.com website or 1-800-APL-CARE support line), you will have serious issues when these sites get your personal data.
If you are contacted by anyone or any company requesting data that has anything to do with an AppleID, you should forward that suspicious (although very real looking) email to Apple support located at email@example.com. They will be able to determine if this was a real or fake request and they will contact you directly.
Have you ever been in the shower and the doorbell rings? How about an early alert system that is waterproof and wireless and will alert you to anyone approaching your driveway, or, even the front door.
This cool device can alert you long before anyone hits the front door wirelessly and with different tones and even blinking LED’s. The sensor is waterproof and battery powered and the transmitter is plugged into any wall outlet.
Have you ever seen this message when trying to install Mac OS X software that didn’t come from the Mac App Store? Watch the new Capital Mac YouTube video below to see how to get around this new Macintosh security setting!
Is this message stopping you from installing software on your Mac?