Earlier this week, it was revealed that Apple had a major security flaw tied to root access on Macs.
The company was quick to release a security update for machines running macOS High Sierra 10.13.1, which is the current public release of the desktop operating system. However, for developers and public beta testers that are using macOS High Sierra 10.13.2, the root password security flaw was still present, looming over users’ heads.
Apple today seeded the sixth developer beta and public beta of macOS High Sierra 10.13.2, and while the majority of the software is basic improvements on features that were available in previous beta seeds, this new pre-release software also includes a fix for the root password security flaw as well.
As such, if you are a developer or a public beta tester who has been using the pre-release software, it is highly recommended that you update to the newest beta to patch the security flaw.
With the update applied, both for the beta of macOS 10.13.2 and the publicly-available macOS 10.13.1, inserting “root” as the administrator’s username will no longer allow access to a Mac when a password is not also entered.
Apple, for its part, has apologized for the security flaw, and the company was quick to patch it on the public version of macOS High Sierra. It is good to see that Apple has also patched it in the beta version for the desktop operating system’s next update ahead of its public launch.
If you are running the macOS High Sierra 10.13.2, make sure to update as soon as you can.