John has been taking his time to further ponder Apple’s High Sierra root access debacle and now shares his thoughts.
Security
Apple's Update and Security Stumbles, Amazon Prime on Apple TV - TMO Daily Observations 2017-12-04
John Martellaro and Bryan Chaffin join Jeff Gamet to look at Apple’s recent security and update stumbles, plus they share their thoughts on Amazon saying their Apple TV Prime video app is still coming this year.
macOS High Sierra 10.13.1 Update Can Break the Root Password Security Patch, Here's How to Fix it
Updating to macOS High Sierra 10.13.1 after installing Security Update 2017-001 can undo the root password security patch. Here’s how to make sure it’s still in place.
Apple Security FUBAR or SNAFU, Bitcoin Bubble, Tesla Bubble, and Oak Island - Pop.0 ep.22
In this video podcast, Bryan Chaffin and John Kheit ask whether the macOS High Sierra root access flaw indicates that Apple is FUBAR or was a simple SNAFU. They also discuss the huge spike in Bitcoin and whether or not we’re seeing a bubble. And speaking of bubbles, some Tesla critics say that company is experiencing its own. The cap the show with a look at The History Channel’s The Curse of Oak Island, and Bryan has a theory about the most recent episodes. (WARNING NSFW: PROFANITY & RANTS)
Apple Root Password Bug, Ajit Pai’s Net Neutrality Fight, Listener Topics – ACM 349
Apple fixed its root access flaw in macOS High Sierra, but the whole incident is a corporate black eye for a company known for executing. Bryan and Jeff also talk about Ajit Pai’s latest embarrassing comments defending his plan to gut net neutrality. They also talk about some of the topics suggested by the Apple Context Machine Facebook Group.
macOS High Sierra Root Flaw, Apple TV 4K - TMO Daily Observations 2017-11-29
Kelly Guimont and John Martellaro join Jeff Gamet to talk about macOS High Sierra’s root access security flaw, plus John updates us on the state of Apple TV 4K.
Apple Releases Security Patch for macOS High Sierra Root Access Flaw
macOS High Sierra’s painfully bad root access security flaw has been patched and the update is ready for download now.
![macOS High Sierra Has a Severe Vulnerability Giving Anyone Root Access – Here’s How to Fix It [Update]](https://www.macobserver.com/wp-content/uploads/2017/11/macos-high-sierra-system-preferences-users-groups-root.jpg)
macOS High Sierra Has a Severe Vulnerability Giving Anyone Root Access - Here's How to Fix It [Update]
It gives anyone with physical access to your Mac immediate and easy root privileges, meaning access to everything on your Mac. Fortunately, there’s a fix you can do yourself until Apple fixes this mess.
New Face ID Mask Hack, Apple's Gesture Patent - TMO Daily Observations 2017-11-28
Bryan Chaffin and Andrew Orr join Jeff Gamet to share their thoughts on the latest Face ID mask hack, plus they take a look at Apple’s gesture-based interface patent that could come to the Mac.
Website Tracking to be Worse Than Thought, Study Shows
The researchers say that ad-blockers can block some, but not all of the scripts. However, AdBlock Plus has recently been updated to block all of the session replay scripts.
macOS Sierra, El Capitan get KRACK Security Updates
When Apple released macOS High Sierra 10.13.1 on Tuesday it also rolled out security updates for macOS El Capitan and macOS Sierra to patch the KRACK Wi-Fi security flaw.
KRACK Update and China's Apple Watch LTE Ban - TMO Daily Observations 2017-10-19
Dave Hamilton and Bryan Chaffin join Jeff Gamet for an update on the KRACK Wi-Fi hack, plus they look at China blocking LTE support for the Apple Watch Series 3.
KRACK WPA2 Flaw Explained, Qualcomm's Push for iPhone Production Ban - TMO Daily Observations 2017-10-16
Bryan Chaffin and Dave Hamilton join Jeff Gamet to discuss the impact the KRACK WPA2 WiFi security threat will have on us, plus they look at Qualcomm’s push to ban iPhone manufacturing in China.
KRACK Hacks WiFi WPA2 Encryption, Even for Apple Products
The WPA2 encryption your Wi-Fi basestation uses isn’t as secure as you thought. Security researcher Mathy Vanhoef revealed a flaw that makes any WPA2 encrypted data on a WiFi network hackable, regardless of what operating system you use.
Trammell Hudson to Keynote MacTech Conference 2017
MacTech Conference always finds interesting keynote speakers and this year is no different because renowned security researcher Trammell Hudson will be taking the stage.
EFF Slams Apple Calling iOS 11 Wi-Fi and Bluetooth Controls a Security Risk
The Wi-Fi and Bluetooth toggles in the iOS 11 Control Center are confusing and the EFF says that’s a big security risk.
Apple Releases macOS High Sierra 10.13 Supplemental Update to Address Security Flaws, Bugs
The update fixes two important security flaws, one of which was just recently publicized and three relatively minor bugs in macOS High Sierra.
![[Update] macOS High Sierra Has an APFS Password Vulnerability](https://www.macobserver.com/wp-content/uploads/2017/10/APFS-password-vulnerability-wide.webp)
[Update] macOS High Sierra Has an APFS Password Vulnerability
This has already reported it to Apple, so we can expect a fix in the next update or so. Still, it’s weird that a vulnerability like this slipped through the cracks.
The Bigger Yahoo! Security Breach, APFS Explained - TMO Daily Observations 2017-10-04
John Martellaro and Kelly Guimont join Jeff Gamet to update everyone on the massive Yahoo! security breach, plus John explains APFS containers and volumes.
Yahoo! Security Breach Impacted All 3B Users, Not Just 1B
Remember the big Yahoo! data breach where a billion user accounts where compromised? Turns out it was really 3 billion, or every single Yahoo! account.
Face ID Security, Amazon's New Echo - TMO Daily Observations 2017-09-28
John Martellaro and Jeff Butts join Jeff Gamet to share their thoughts on Apple’s Face ID security white paper, and they weigh in on Amazon’s new Echo product lineup.
keychainStealer Explained, App Store Pricing Rant - TMO Daily Observations 2017-09-26
Jeff Butts and Bryan Chaffin join Jeff Gamet to explain keychainStealer and why it shouldn’t stop you from upgrading to macOS High Sierra, plus they rant about App Store pricing complaints.
keychainStealer is Real, but Shouldn't Stop You from Upgrading to macOS High Sierra
A new Mac security threat called keychainStealer could expose your Keychain passwords, but it isn’t limited to High Sierra, and isn’t a reason to not upgrade.
macOS High Sierra Performs a Weekly EFI Security Check
Most people probably won’t see this dialog box though. It will only appear if your Mac thinks something fishy is going on.