undefined | Better HN

0 pointsCGamesPlay8y ago0 comments

You can get undetectble remote access on most machines given "physical access once", so I don't think this qualifies as "remotely exploitable".

0 comments

If root was ever enabled without setting a password, the machine is then in a state that it can be remotely exploitable.

While it's unlikely, there are probably plenty of users who have done this for some reason or another.

Don't underestimate a user's ability to blindly do things like this by following arcane instructions in attempts to fix an unrelated problem.

Not according to this video:

They seem to be remotely accessing the machine to both set and then use the root account.

The system needs to have some sort of remote access, like screen sharing, turned on first, then you can remotely use the root account.

j / k navigate · click thread line to collapse

If root was ever enabled without setting a password, the machine is then in a state that it can be remotely exploitable.

While it's unlikely, there are probably plenty of users who have done this for some reason or another.

Don't underestimate a user's ability to blindly do things like this by following arcane instructions in attempts to fix an unrelated problem.

Not according to this video:

They seem to be remotely accessing the machine to both set and then use the root account.

The system needs to have some sort of remote access, like screen sharing, turned on first, then you can remotely use the root account.

j / k navigate · click thread line to collapse