New myTC Login Page

Skip to content Skip to main navigation
Teachers College, Columbia University
Printer-friendly Version
Teachers College, Columbia University Logo

Computing and Information Services (CIS)

enabling the productive use of technologies for teaching, learning, research, administration, and outreach

How to protect yourself from the macOS High Sierra security vulnerability

 

 

 

 

 

Due to a discovered vulnerabilty in Apple newest operating system, macOS High Sierra, an attacker could gain root-user access to an unlocked computer simply by typing "root" into the "User Name" field, leaving the password field blank, and hitting "enter" while in the "Users & Groups" section of "System Preferences.

Apple is currently working on a security update to address this issue. In the meantime, Apple has provided a set of instructions on how to protect your computer:

**If you do NOT have macOS High Sierra (version 10.13 or higher), then you do not need to do anything. This vulnerability does not exist in any other versions of macOS. 

         1. Choose Apple menu () > System Preferences, then click Users & Groups (or Accounts).

         2. Click [lock icon], then enter an administrator name and password.

3. Click Login Options.
4. Click Join (or Edit).
5. Click Open Directory Utility.
6. Click [lock icon] in the Directory Utility window, then enter an administrator name and password.
7. From the menu bar in Directory Utility:
       * Choose Edit > Enable Root User, then enter the password that you want to use for the root user.
       * Or choose Edit > Disable Root User.

 

 

If you have any questions or need assistance with this process, please contact the Service Desk at x3300 or email servicedesk@tc.columbia.edu

 

 

 

Published Tuesday, Aug. 29, 2017

How to protect yourself from the macOS High Sierra security vulnerability

Due to a discovered vulnerabilty in Apple newest operating system, macOS High Sierra, an attacker could gain root-user access to an unlocked computer simply by typing "root" into the "User Name" field, leaving the password field blank, and hitting "enter" while in the "Users & Groups" section of "System Preferences.

Apple is currently working on a security update to address this issue. In the meantime, Apple has provided a set of instructions on how to protect your computer:

**If you do NOT have macOS High Sierra (version 10.13 or higher), then you do not need to do anything. This vulnerability does not exist in any other versions of macOS. 

         1. Choose Apple menu () > System Preferences, then click Users & Groups (or Accounts).

         2. Click [lock icon], then enter an administrator name and password.

3. Click Login Options.
4. Click Join (or Edit).
5. Click Open Directory Utility.
6. Click [lock icon] in the Directory Utility window, then enter an administrator name and password.
7. From the menu bar in Directory Utility:
       * Choose Edit > Enable Root User, then enter the password that you want to use for the root user.
       * Or choose Edit > Disable Root User.

 

 

If you have any questions or need assistance with this process, please contact the Service Desk at x3300 or email servicedesk@tc.columbia.edu

 

 

 

How This Gift Connects The Dots
 
Scholarships & Fellowships
 
Faculty & Programs
 
Campus & Technology
 
Financial Flexibility
 
Engage TC Alumni & Friends