Tiny Mac Tutorials: Quick Security fix for OS X Remote Desktop Agent

Quick Security fix for OS X Remote Desktop Agent

As of last week a security issue has been raised regarding Apple Remote Desktop Agent and escalation of user privileges to root (super user) without authentication. To see if your machine is affected you can run the following terminal command.

Here chmod (change file modes utility) changes the file mode bits for a file in this case ARDAgent.
It turns off the "set user Id on execution bit" which would be the file owner in this case root. Note the mode of 5 = read(4)+execute(1) is set for owner, group and all others.

So using a chmod of 4555 on the ARDAgent would see the problem reappear, only if this is run again by root.

All for now.

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Design and icons by N.Design Studio | A Blogger Template by Blog and Web

Apple, the Apple logo, iTunes, Cocoa, GarageBand, Mac OS, Xcode and Mac are trademarks of Apple Computer, Inc., registered in the U.S. and other countries. OpenGL is a registered trademark of SGI.Unix® is a trademark of the Open Group. BSD is a registered trademark of UUnet Technologies, Inc.

Blog related articles and applications by devnill is licensed under a Creative Commons Attribution 2.0 UK: England & Wales License.
Based on a work at macateeny.blogspot.com.
Permissions beyond the scope of this license may be available at macateeny.blogspot.com.

Tiny Mac Tutorials

Quick Security fix for OS X Remote Desktop Agent

0 comments:

Subscribe Now

RSS Feeds

Article Archive

Tag Cloud

Email

;)

Snap Shots