As the Apple Turns    About    Reruns    Contact    Preferences Fri 8:04 PM

Uh... LESS Secure, Please (6/10/03)
SceneLink
 

Beware of Geeks bearing software updates! If you're using Mac OS X 10.2.6, by now you may have already noticed Security Update 2003-06-09 popping up in Software Update. And it may have looked pretty innocuous, patching a "potential security issue when the Apple Filing Protocol (AFP) is used to reshare a Network File System (NFS) mount" and addressing "a situation where LDAP bind authentication requests may be improperly sent when using Kerberos authentication." And as you read that, if you're anything like the average Mac user, you probably heard this: "blah blah blah, blah blah, blah blah blah Cinnabon blah." So maybe you went ahead and installed it, figuring that, hey, when has Apple ever steered you wrong?

There's just one problem: according to MacFixIt, after installing the update, a slew of people suddenly found that their login passwords no longer worked-- for any account. If you think about it, this makes perfect sense; what better way to make a system more secure than to prevent everyone from logging in? As far as we can tell, though, this is apparently a pretty minor glitch; anecdotal evidence in Apple's support forums suggests that if you have your Mac set to auto-login to any account on boot, you won't notice the issue unless you actually log out. And if you do use the Login Window, it works just fine provided you have it set to "Name and password." You only get hit with the bug if you've got Login Window set to "List of users."

"But AtAT," you cry, "if I switch my Login Window to 'Name and password' instead of 'List of users,' I won't get to see my super-cool user icon!" "Why, what's your icon?" we ask. "It's a tasteful nude rendition of Lois of 'Hi and Lois' fame," you reply. "Sweet," we add.

Well, as it turns out, even if your Login Window is displaying the "List of users," valid passwords are only rejected if you click the "Login" button. After typing your password, press Return or Enter instead and you're in business. Given the circumstances in which the bug appears, we're actually kind of surprised that anyone noticed it at all; we figured that nobody's actually clicked a "Login" button instead of just pressing Return since maybe 1936.

Still, this must be something of an embarrassment for Apple, who's had some fairly ugly press following poorly-tested software updates in the past. (Specifically, we're thinking of that other Security Update that effectively nuked Classic on certain PowerBooks, and the iTunes installer that on occasion would blithely chew through gigabytes of user data without so much as a "pardon me boy.") Mostly we're just relieved that this login bug is so minor and easily worked around-- although, you know, had this Security Update instead caused some users' heads to burst into green flame, that probably would have been a little more dramatic. Hey, you can't win 'em all.

 
SceneLink (4003)
And Now For A Word From Our Sponsors
 

From the writer/creator of AtAT, a Pandemic Dad Joke taken WAYYYYYY too far

 

The above scene was taken from the 6/10/03 episode:

June 10, 2003: Apple issues a Mac OS X security update that may make things a little too secure. Meanwhile, yet another school district is purchasing mass iBooks for its students and teachers, and QuarkXPress for Mac OS X finally surfaces next week; uh, does anybody remember what that is?...

Other scenes from that episode:

  • 4004: The "i" Stands For "iNgalls" (6/10/03)   Hey, you know what we haven't had for a while? A scene about an entire school district committing to buy hundreds of iBooks for its students. Also, Snapple. Yeah, we could go for a nice, refreshing Snapple right about now...

  • 4005: Not Very XPress, But Here (6/10/03)   Say, uh... have you taken a slow sidelong glance at Apple's homepage lately? Because it seems that someone at the company has gone a little screwy and decided to use one of the web's primest pieces of virtual real estate to help push some other company's product...

Or view the entire episode as originally broadcast...
Vote Early, Vote Often!
Why did you tune in to this '90s relic of a soap opera?
Nostalgia is the next best thing to feeling alive
My name is Rip Van Winkle and I just woke up; what did I miss?
I'm trying to pretend the last 20 years never happened
I mean, if it worked for Friends, why not?
I came here looking for a receptacle in which to place the cremated remains of my deceased Java applets (think about it)

(1287 votes)

Like K-pop, but only know the popular stuff? Expand your horizons! Prim M recommends underrated K-pop tunes based on YOUR taste!

Prim M's Playlist

DISCLAIMER: AtAT was not a news site any more than Inside Edition was a "real" news show. We made Dawson's Creek look like 60 Minutes. We engaged in rampant guesswork, wild speculation, and pure fabrication for the entertainment of our viewers. Sure, everything here was "inspired by actual events," but so was Amityville II: The Possession. So lighten up.

Site best viewed with a sense of humor. AtAT is not responsible for lost or stolen articles. Keep hands inside car at all times. The drinking of beverages while watching AtAT is strongly discouraged; AtAT is not responsible for damage, discomfort, or staining caused by spit-takes or "nosers."

Everything you see here that isn't attributed to other parties is copyright ©,1997-2024 J. Miller and may not be reproduced or rebroadcast without his explicit consent (or possibly the express written consent of Major League Baseball, but we doubt it).