Slashdot Mirror

← Back to Stories (view on slashdot.org)

Macs More Vulnerable Than Windows For Enterprise

Posted by CmdrTaco on from the commencing-holy-war dept.

sl4shd0rk writes "At a Black Hat security conference in Las Vegas, researchers presented exploits on Apple's DHX authentication scheme which can compromise all connected Macs on the LAN within minutes. 'If we go into an enterprise with a Mac and run this tool we will have dozens or hundreds of passwords in minutes,' Stamos said. Macs are fine as long as you run them as little islands, but once you hook them up to each other, they become much less secure."

4 of 281 comments (clear)

  1. NNNGGGHYAAA!!!! by Anonymous Coward · · Score: 5, Funny

    Macs Good! Microsoft BAD! MACDOR THE BARBARIAN SMASH THE HEATHENS!!!!

    --
    Filter error: Don't use so many caps. It's like YELLING.
    (really? you'd almost think that was the intent

  2. Re:All computers are less secure by somersault · · Score: 1, Funny

    Isn't that just because it isn't news when it happens on Windows?

    --
    which is totally what she said
  3. Re:And? by NatasRevol · · Score: 3, Funny

    It's not a bug, it's a design difference. On Mac Server, it does fall back to simpler protocols because that's how it was often set up - no real sysadmins means no consistent use of strong authentication.

    However, it would all go away if Apple required and ONLY allowed kerberos for authentication of any service from OS X Server. In other words, just like AD.

    Having said that, this exploit still requires an admin password to escalate privileges - which isn't typically given in a corporate setting. In other words, admin passwords can do admin things.

    --
    There are two types of people in the world: Those who crave closure
  4. Re:A virus? In my MAC? by BrokenHalo · · Score: 4, Funny

    Most douchenozzles write virii for kicks.

    And much worse, only a total and utter douchebag uses "virii" as a plural form of "virus".