With a lot of help from the NosillaCastaways we have a great show. George from Tulsa brings us a review of the Chromebook Pixel, Helma from the Netherlands tells us how she translates Japanese using her iPhone, Knightwise from Belgium explains how he hacked High Sierra onto a Mac that Apple says is too old to run that OS. Patreon turns around and apologizes. I managed to do one segment, where I put Overcast through its paces against the criteria with which I judged Pocket Casts and Downcast last week. Finally Steve reads his annual poem, The Night Before Christmas – NosillaCast style.
Security Medium 1 — macOS High Sierra Root Bug
A nasty bug was found in macOS 10.13 High Sierra — it was possible to cause the root account to become enabled, and to do so with a blank password.
To trigger this bug all you had to do was go into the control panel, click the padlock to un-lock the sensitive settings, change the username to root, enter no password, then hit enter. At this point the authentication would fail, but, the root account would have been made active. Hit enter again, and
root with a blank password will be accepted as valid. At this point you can do anything in the control panel, no matter how restricted your account is in theory, and, anything you can get full terminal access as