DealsOnTheWeb Daily Deal: Computer Geeks' Ho Ho Holiday Deals - Save Up to 80%
TMO Quick Tip - Lock Down Your Root User
by , 7:30 AM EDT, September 24th, 2007
Mac OS X may sport a friendly user interface, but it is harboring a Unix core underneath. That means the security steps Unix pros take can apply to regular Mac users as well including making sure that root, the ultimate power user on your computer, is under your control and no one else's.
By default, the root user on your Mac is disabled, but it doesn't have a password set, which is a potential security weak point. Setting a password makes it that much more difficult for bad guys to try to hack into your Mac.
I added a password to my root user account, and I also keep that user disabled. Here's how:
- Launch NetInfo Manager. It's in Applications/Utilities.
- Click the padlock in the NetInfo Manager window and enter your administrator user name and password.
- Choose Security > Enable Root User.
- You should see an alert dialog telling you that your root user password is blank. Click OK.
- Enter a password for your root user. Make sure it isn't a password that you are already using for another account on your Mac. Now click OK.
- Choose Security > Disable Root User.
- Enter your administrator user name and password and click OK.
- Click the padlock in the NetInfo Manager window to prevent any other changes.
 NetInfo Manager |
|---|
 Enable your root user. |
|---|
 Your Mac lets you know if you haven't set a root password yet. |
|---|
 Enter a unique password for your root user. |
|---|
 Disable your root user. |
|---|
Locking down your root user is important because anyone that gains root access to your Mac can do anything they want including deleting files or user accounts, installing applications without your knowledge, and siphoning off any information they want from your hard drive. That isn't likely to happen, but taking steps to help insure that it won't happen is a pretty good idea.
Jeff Gamet is TMO's Morning Editor and Reviews Editor. He lectures, teaches and speaks on Mac OS X and design-related topics, and is the author of The Designer's Guide to Mac OS X from Peachpit Press.
if you have tips or tricks to share, or Mac-related questions you want answered.
Observer Comments
Mon Sep 24, 2007 11:51 am Subject: Good question, guest.
QuoteGuest wrote:
what happens if you forget your root user password. Is it kept in keychain?
No, it is not kept in any keychain. If you forget it, you have to boot to an OS X install CD and reset it. You can do that for any local OS X user account. If you're concerned about this ability, you should have an Open Firmware password that prevents booting from CD or any external device without [yet another] password.
Mon Sep 24, 2007 6:59 pm Subject:
Recent Headlines - Updated Thursday, November 20th, 2008
- Thu., 4:55 PM
- User Friendly Blog by Ted Landau - Deal or No Deal: Apple Edition
- 2:55 PM
- Mac Gaming News - Blizzard Sets a New 1-Day Sales Record With Lich King
- 2:35 PM
- iPodObserver - Man Sends Naughty Pics to Mistress, Blames iPhone
- 2:05 PM
- Gaming News - GameRanger Adds PC Support
- 2:00 PM
- Editorial - Times Are Tough Apple, How About Feeding Some Kids
- 1:45 PM
- TMO's DealsOnTheWeb.com - Logitech V550 Nano Cordless Laser Mouse for Notebooks: $42.29 Delivered
- 1:30 PM
- TMO Contest - Get Into Macworld Expo with Your Inner Bard
- 1:00 PM
- Review - Bento 2
- 11:50 AM
- Freeway 5.3 Converts Flash to QuickTime for iPhone
- 11:10 AM
- iPodObserver - Rumor: More Labels to Go DRM-free at iTunes Store
- 10:30 AM
- Hot Forum Topic - Mac Security and Drive Encryption
- 10:00 AM
- iPO Review - Tetris
- 9:55 AM
- OmniGraffle 5.1 Beefs Up Visio Compatibility
- 9:35 AM
- iPodObserver - Microsoft Lets Zune Subscribers Keep Some Music
- 8:45 AM
- DiscLabel 5.4 Adds Holiday, Business Templates
- 8:30 AM
- iPO Review - Real Soccer 2009
- 8:15 AM
- OmniFocus 1.5 Adds Multi-Mac Syncing, More
- 7:35 AM
- Apple TV Software Update 2.3 Adds AirTunes Support, More
The Mac Observer Reader Specials
- Download Typestyler, still the Ultimate Styling Tool for Internet, Print and Video Graphics. Works great in Classic with a Native OS X Version on the way. Free Tryout: www.typestyler.com
Seagate 1TB 7200.11 7200RPM/32MB Cache SATA Drive $112 Hitachi 320GB 7200RPM/16MB Cache 2.5" SATA Drive $96. Samsung 500GB 5400RPM/8MB Cache 2.5" SATA Drive $138. ATA-SATA Internal External Firewire Drives & More. Click to Maximize your Macs...
Mac observers can now play Party Poker for Mac as well as Mac casino games by going to MacPokerOnline.com.
RamJet Memory: Mac Pro FB-DIMMs: 2Gig kit $95, 4Gig Kit $179, 8Gig Kit $355! MacBook 2Gig Kit $78, 4Gig Kit $149! Click hereFor the latest Apple products use Ciao a comparison website to find laptops like MacBook Air. Then find the best prices on MP3 players and use our comparison tool to evaluate cell phones.
Laptop Hardware Provided by TechRestore - Overnight Mac & iPod Repairs.
MAXIMO iMetal Isolation Earphones: $18.99 Delivered - $6.00 Drop 
Razer Viper Optical Gaming Pro Mouse: $12.99 Delivered 
Seagate Momentus 7200.3 ST9320421AS Hard Drive: $95.99 Delivered 
Cultured Freshwater Pearl and Gemstone 14K 36" Necklace : $89.90 
Nextar 8" TFT LCD N8-101 Digital Photo Frame: $49.99 Delivered 
