alt Hacker NewsTheir legendary "goto fail" debacle as well as the ease with which ios has repeatedly been jailbroken would disagree. I think geohot once quipped: "My lawyer could write a better malloc."
Replies
wfme • yesterday at 9:21 PM
Dare we not look to Android.
goto fail was relevant in 2014 - perhaps not the most useful point in 2026.
I much prefer the defect where the root password was the empty string [1].
https://security.it.miami.edu/stay-safe/sec-articles/macosx-...
[1] Actually, the defect was that creating a root account was a unprivileged action, so anybody could create a root account on your machine with a password of their choice. The most obvious presentation is that you could login to root by pressing enter twice with the empty password; the first time creating root with the empty password and the second time logging you in.