Macs More Vulnerable Than Windows For Enterprise 281
Posted
by
CmdrTaco
from the commencing-holy-war dept.
from the commencing-holy-war dept.
sl4shd0rk writes "At a Black Hat security conference in Las Vegas, researchers presented exploits on Apple's DHX authentication scheme which can compromise all connected Macs on the LAN within minutes. 'If we go into an enterprise with a Mac and run this tool we will have dozens or hundreds of passwords in minutes,' Stamos said. Macs are fine as long as you run them as little islands, but once you hook them up to each other, they become much less secure."
NNNGGGHYAAA!!!! (Score:5, Funny)
Macs Good! Microsoft BAD! MACDOR THE BARBARIAN SMASH THE HEATHENS!!!!
--
Filter error: Don't use so many caps. It's like YELLING.
(really? you'd almost think that was the intent
Re:All computers are less secure (Score:2, Funny)
Isn't that just because it isn't news when it happens on Windows?
Re:And? (Score:4, Funny)
It's not a bug, it's a design difference. On Mac Server, it does fall back to simpler protocols because that's how it was often set up - no real sysadmins means no consistent use of strong authentication.
However, it would all go away if Apple required and ONLY allowed kerberos for authentication of any service from OS X Server. In other words, just like AD.
Having said that, this exploit still requires an admin password to escalate privileges - which isn't typically given in a corporate setting. In other words, admin passwords can do admin things.
Re:A virus? In my MAC? (Score:4, Funny)
Most douchenozzles write virii for kicks.
And much worse, only a total and utter douchebag uses "virii" as a plural form of "virus".