Detecting macOS High Sierra root account without authentication

Detecting macOS High Sierra root account without authentication

|
Yesterday, Tenable™ released two plugins to detect macOS High Sierra installs which allow a local user to login as root without a password after several login attempts. Both plugins require authentication, however, there was one scenario where a user could log in over VNC protocol with the root account and ... Read More