Possible Login Screen Security Hole in Lion?

Similar Messages

• Login screen mac os x lion problem

  "stuck" when i start write password in login screen mac os x lion . any help ?

  s_abohadi wrote:
  hello
  i have mac book 13 inch , 2012, i have installed Mac OS X 10.7 , but i did not found all properties ike notification, imessage ,notes, I want to install Mac os x LION from APPLE store but I get this message (This version of Mac OS X 10.7 cannot be installed on this computer.)
  hanks for help
  What are your computer specs under About this Mac?
  Pete

• Login screen freezes after the Lion 10.7.1 update

  After updating to 10.7.1 (the first Lion update) & restarting the system, it's not logging me in. As I give my password and press return it stays on the same login screen. I could move the mouse but there is no rotating wheel, just the same login screen. I tried starting Mac in safe mode but same thing.

  Force a restart and at the chime hold down the SHIFT key. You will see a gray progress bar appear. When the login screen appears, reboot again WITHOUT holding down the SHIFT key. Then try logging in again.

• Login screen black on Mountain Lion

  I upgraded my MacBook Pro 13 early 2011 to Mountain Lion yesterday.
  I am having a problem with the login screen. About 50% of the time when I reboot, the login screen is completely blank, just plain black. The other screens I have connected show the linnen background as normal.
  The login screen is there as I can login by:
  pressing down arrow
  pressing enter
  typing my password
  pressing enter
  I have tried the various to try and fix it:
  zapping PRAM
  repairing the boot volume
  repairing permissions
  disconnecting my other displays
  None of that did any good, it still keeps doing it.

  It looks like this is being caused my the driver for my DisplayLink USB display adapter.
  The driver was also causing Finder and Skype to crash.

• How to get IP address from login screen in 10.7 Lion

  Hi All,
  In 10.7 I didn't find any option to get IP address from login screen as used to got in 10.4,10.5,10.6
  Thanks

  Jason,
  is there any way to make that example
  work with release 6.0, preverribly
  with IE5 (native VM)?
  The WHEN-CUSTOM-ITEM-EVENT Trigger
  doesn't seem to fire.
  Thanks
  Anton Weindl
  <BLOCKQUOTE><font size="1" face="Verdana, Arial">quote:</font><HR>Originally posted by Jason Pepper ([email protected]):
  If you are using web deployed forms then you need to use a javabean to obtain the IP of the local machine - you can get one that does it here..
  http://technet.oracle.com/sample_code/products/forms/listing.htm#pjcexamp
  If you are running client server then there is a utility in d2kwutil.pll that allows you to read the registry and do things like get the IP address. d2kwutil is shipped with your copy of Forms - just have a look for it - the code is self documenting, but there is also a manual you can read too.
  Jason Pepper
  Principal Product Manager
  Enterprise Internet Tools
  Oracle Corp<HR></BLOCKQUOTE>
  null

• Possible instant access security hole

  When using instant access camera from the lock screen, then pressing home on iPhone 4 IOS 5, it goes straight into the home page without needing to enter a passcode.  Anyone else seeing this?

  No, if I open camera from lock and press the home button, it requires passcode.  Do you have your passcode set to be required after 2 minutes?
  Go to Settings > General > passcode lock (enter passcode) > Require Passcode (change to immediately)
  and see if that works.
  Cheers!

• HUGE SECURITY HOLE IN LOGIN FROM SCREEN SAVER

  One of the options in the security panel permits a user to require that a username and password be entered to login once the screen saver locks your account.
  The option is "Require password to wake this computer from sleep or screen saver"
  Although one would assume that the credentials required to wake the computer is the username/password of the account that was being used when the computer went into sleep mode or the screen saver. WRONG!!! Anyone with an account on the machine can enter their username/password and wake the computer and voila that user now has control of the machine as the former user. That's right you guessed it HUGE security hole.
  Anyone thinking that they can wake away from their machine and have the screen saver or sleep mode protect their account after a specified period of time is sadly mistaken. Anyone with an account on the machine can enter their own username and password and drop right into your account right where you left off.
  Can you believe this stuff? No warning, no release note to tell you of such a poorly designed "security" option.
  Apple please fix what must have been an oversight or at least tell people about this intentional design BEFORE they find anyone can wake the computer and become you as a user.
  Thanks,
  JH

  jonathan_2005 wrote:
  One of the options in the security panel permits a user to require that a username and password be entered to login once the screen saver locks your account.
  The option is "Require password to wake this computer from sleep or screen saver"
  Although one would assume that the credentials required to wake the computer is the username/password of the account that was being used when the computer went into sleep mode or the screen saver.
  Never assume
  WRONG!!! Anyone with an account on the machine can enter their username/password and wake the computer and voila that user now has control of the machine as the former user. That's right you guessed it HUGE security hole.
  Anyone with a standard user account? Are you quite sure?
  Anyone thinking that they can wake away from their machine and have the screen saver or sleep mode protect their account after a specified period of time is sadly mistaken. Anyone with an account on the machine can enter their own username and password and drop right into your account right where you left off.
  I never think that way. A more secure lock is ensured by using the screen lock feature of the keychain.
  Can you believe this stuff?
  Not sure what stuff you refer to.
  No warning, no release note to tell you of such a poorly designed "security" option.
  Would you believe that anyone can access your computer? Stolen computers are regularly started up without much problem.
  Apple please fix what must have been an oversight or at least tell people about this intentional design BEFORE they find anyone can wake the computer and become you as a user.
  You are writing to other users like yourself here, not Apple.
  I also presume you are new to the Mac world.

• Lion Stuck at login screen,can't type password

  My OSX Lion stuck at login screen,when I type password it just "beep" and I can only type few words.I just had those problem before..But since the battery ran out,and I gonna login...then I can't type the password...please help me....
  P.S. My keyboard and trackpad is not working before,my keyboard can't type and my trackpadcan only do right click..

  What year and model of MacBook Pro do you have?  I'm wondering if the factory installed battery is failing due to age or use.  A MacBook Pro battery can be recharged about 300 times before it becomes unuseable.  Is this possibly the problem?
  Hope this helps

• Export Display (Login Screen) - How to use in MAC OSX LION !?!?!

  I'm having problems with exporting my display. I'm trying to connect and enable the connection between twoMAC OS X SERVER LION. and is not working. I want to begin a process that only after the user login is working. How to do this anyway? because no remote program is working except SSH, which I can shutdown, logoff, and reboot. But I can not export the login screen from one machine to another, how do?? need much help ....
  I tried to do as the example below:
  ssh-X remote_host_name 
  1) Warning: No xauth data; using fake authentication data for X11 forwarding.
  MacBook-Pro-for-Isa: ~ $ export DISPLAY = localhost_IP: 0.0
  MacBook-Pro-for-Isa: ~ $ xclock (user)
  Error: Can not open display: localhost_IP: 0.0
  2) MacBook-Pro-for-Isa: ~ $ ssh-Y Sebba@LOCAL_IP
  password:
  Warning: No xauth data; using fake authentication data for X11 forwarding.
  MacBook-Pro-for-Isa: ~ $ export DISPLAY = LOCAL_IP: 0.0
  MacBook-Pro-for-Isa: ~ $ xclock Sebba
  Error: Can not open display: LOCAL_IP: 0.0
  I do not know if I'm using the correct command, but enabled in sshd_config
    ForwardAgent yes
    ForwardX11 yes
  Fire up X11.app (It's located in / Applications/Utilities/X11.app)
  On Mac box: X11 go to preferences and enable "Allow connections from network clients" (Make sure it lookslike below)
  restart X11.app
  Open a terminal and in the X11: xhost +
  ssh to your linux box and do: export DISPLAY = IP_OF_MAC_BOX: 0.0
  true??
  If anyone knows how to use help me, I need examples of how it works if there is more to be set somewhere.
  Regards
  Leonardo Sebba

  windmarble wrote:
  I use to be able to turn off my displays by hitting "lock screen" in keychain access in Snow Leopard.
  Really? Want to show me that button or setting that allows that? AFAIK, System Preferences->Security->General->is where you set that when the machine sleeps or screensaver activates. Accordingly, I'm only aware of a hot corner triggering those two options and the behavior remains the same in Lion, even though the prefPane's name is slightly changed.

• Adjusting (ok... fiddling) the new Lion login screen

  Is it possible to edit the new Lion Login screen beyond replacing the picture (/System/Library/Frameworks/AppKit.framework/Versions/C/Resources/NSTexturedFul lScreenBackgroundColor.png)?  Specifically, can you change the contrast/brightness of the background picture and more importantly add the hostname/machine name as we had with the original login screen (handy when setting up computer labs).  Does the machine administrator have access to an hidden program to handle this?

  I guess I'll try turning off Vault
  as per this thread its supposed to fix it.
  https://discussions.apple.com/message/15794636#15794636

• Mountain Lion Desktop crash? Randomly it returns me to the login screen and I have restart all my apps

  So after install of Mountain Lion (never happened before) my desktop crashes and it returns me to the login screen.  After I login I have to restart all my apps.
  One morning this happened 5+ times in under an hour.  So my productivity has gone down :-(
  I work around this by only running three apps (finder, terminal & firefox), and then it sees to only happen 2-3 times a day...sigh.
  The only other odd thing and have no idea if it is related is that firefox was showing some animated image from the olympics and when I had it on one screen it was fine, when I had the window on the other screen, the image was not the right image, it looked like it had reached into the screen buffer of other applications and was displaying that (e.g. where there was a scrolling flame for the right image, there was some scrolling upside down text from my terminal when I had it on the other screen where the flame was supposed to be).
  An help on how to debug/solve would be helpful.

  You're welcome. If you use Zoom often try the new show controller feature. It's below where you turned zoom off. Once you turn it on you can use it to turn Zoom on and off. Plus you can use zoom as a magnifying glass instead of full screen.

• After upgrading to Lion, FaceTime does not give me a login screen.  Help!

  After upgrading to Lion, I tried to use FaceTime for the first time.  The login screen never launches.  What can I do to get a login screen?

  update: It seems like the XCode update did interfere with itunes. I reran the XCode install this time with itunes not running. This seems to update all necessary drivers and Library items correctly.
  After this IPad and IPod touch were working fine again.

• USB devices cause a crash at Lion login screen

  Since I have installed MacOS X Lion I am experiencing regular crashes at the login screen at startup.
  These crashes occur virtually always when
  + a USB device that was connected at the previous shutdown is missing at next launch
  + a USB device that was not connected at previous shutdown is connected at next launch
  The type of the device does not make a difference.
  I have had this with USB sticks, but also with my Wacom graphics tablet and a regular USB hard disk (connected via two USB ports).
  This is extremely annoying and I had hoped this would be fixed with the latest Lion upgrade, but it is not.
  Anyone out there has an idea for an easy fix?

  Guys -
  am I really the only person who sees this?
  This is a serious issue and I also see it happening upon connecting certain USB devices (e.g. today a Garmin nüvi 1250) while running Lion. Non of the OS updates since I posted this helped.
  I feel like I am running Windows here...

• Lion login screen problems on Mid 2009 MacBook Pro

  After upgrading my wife's Mid 2009 MacBook Pro from Snow Leopard to Lion we are seeing weird behavior on the login screen after the computer wakes from sleep mode.
  The screen is only partially drawn (usually the top left 1/4 of the screen), and the grey background is shown instead of her desktop background picture. When you move the mouse around on the screen, it repaints blocks on the screen where the pointer has been.
  This only seems to happen when the machine sleeps for a long period of time, e.g., overnight. When it just sleeps for a little while we don't see the issue.
  When searching the forums for anyone else with the problem, several folks said that there was an issue with the video drivers for the 9400M card and recommended switching to the 9600M GT, but her machine only has the 9400M in it.
  All other aspects of the system work fine.
  Anyone else seeing this? Any clues?

  Surprised there hasn't been anyone else experiencing this issue.
  I have seen this on 2 new MBP 2.3mhz i5's with the Intel HD 3000 384mb graphics, Lion 10.7.3 & 10.7.4.
  Also with the latest Lion firmware for the late 2011 MBP's that addresses compatibility and stability issues.
  Hopefully there is a fix soon because the painting on my locked screen to login is getting annoying

• Login Screen freezes after Lion 10.7.2 upgrade - needs 3 hard reboots

  Just upgraded my 21.5" late 2009 iMac to OS X Lion 10.7.2.
  0. Power up from cold start: login screen appears, and mouse works, but clicking on users does not bring up the password box.  No option except for hard reboot.
  1. Hold down power button until it shuts down.  Power up, still no respponse (see 0.).
  2. Hold down power button until it shuts down.  Power up, still no respponse (see 0.).
  3. Hold down power button until it shuts down.  Power up, responds normally, can login (or start computing if login screen is bypassed).
  I saw messages (mostly for MacBook Pros) dating back to July/August 2011 with similar problems.  But none for 10.7.2, and none where it consistently takes 3 hard reboots to get a response.  I tried all of the suggestions that applied: SMC reset, repair disk permissions, change password, bypass login screen. If I use automatic login, it boots up into my desktop and all the services seem to start.  The mouse works, but nothing responds when I click on it (see 0.).
  Any ideas?
  thanks,
  david

  Thanks lynque.  It turns out I did need a keychain repair, but that didn't fix the problem.  I probably should have done this earlier, but I ended up unplugging all peripherals (2 firewire + 3 USB) then powered up without issue.
  So I shut down, plugged in one at a time, and ran into the problem again after plugging in an external hard drive (WD My Book Essential).  I repaired with disk utility, but the problem remained.
  I then rebuilt the partitions with Disk Warrior, and now everything seems to work....