Mac hacking competition winner mocks Apple security
Summary: It took the winner of the 'rm-my-mac' competition 30 minutes to gain root control of a Mac Mini using an unpatched OSX exploit
Gaining root access to a Mac is "easy pickings", according to an individual who won an OS X hacking challenge last month by gaining root control of a machine using an unpublished security vulnerability.
On 22 February, the Sweden-based Mac enthusiast set up his Mac Mini as a server and invited hackers to break through the computer's security and gain root control, which would allow the attacker to take charge of the computer and delete files and folders or install applications.
Participants were given local client access to the target computer and invited to try their luck.
Within hours of going live, the "rm-my-mac" competition was over. The challenger posted this message on his Web site: "This sucks. Six hours later, this poor little Mac was owned, and this page got defaced."
The hacker who won the challenge, who asked ZDNet UK sister site ZDNet Australia to identify him only as Gwerdna, said he gained root control of the Mac in less than 30 minutes.
"It probably took about 20 or 30 minutes to get root on the box. Initially, I tried looking around the box for certain misconfigurations and other obvious things, but then I decided to use some unpublished exploits — of which there are a lot for Mac OS X," Gwerdna told ZDNet Australia.
According to Gwerdna, the hacked Mac could have been better protected, but it would not have stopped him because he exploited a vulnerability that has not yet been made public or patched by Apple.
"The rm-my-mac challenge was set up similar to how you would have a Mac acting as a server — with various remote services running and local access to users... There are various Mac OS X-hardening guides out there that could have been used to harden the machine, however, it wouldn't have stopped the vulnerability I used to gain access. There are only limited things you can do with unknown and unpublished vulnerabilities. One is to use additional hardening patches — good examples for Linux are the PaX patch and the Grsecurity patches. They provide numerous hardening options on the system and implement nonexecutable memory, which prevent memory-based corruption exploits," Gwerdna said.
Gwerdna concluded that OS X contains "easy pickings" when it comes to vulnerabilities that could allow hackers to break into Apple's operating system.
"Mac OS X is easy pickings for bug finders. That said, it doesn't have the market share to really interest most serious bug finders," Gwerdna added.
OS X has come under fire in recent weeks with the appearance of two pieces of malware and a number of serious security flaws, which have since been patched by the Mac maker.
In January, security researcher Neil Archibald, who has already been credited with finding numerous vulnerabilities in OS X, told ZDNet Australia that he knows of numerous security vulnerabilities in Apple's operating system that could be exploited by attackers.
"The only thing which has kept Mac OS X relatively safe up until now is the fact that the market share is significantly lower than that of Microsoft Windows or the more common Unix platforms... If this situation was to change, in my opinion, things could be a lot worse on Mac OS X than they currently are on other operating systems," Archibald said at the time.
An Apple Australia representative said on Monday that the company was unable to comment at this stage. Representatives at Apple's Cupertino, California, headquarters could not be reached for comment.
Munir Kotadia reported from Sydney for ZDNet Australia. For more ZDNet Australia stories, click here.
Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.
Talkback
Shame, Munir, for stooping to either 1) yellow journalism or 2) shilling for Bill.
Editors, you should have caught this one. The even is worth covering, but it damages ZDNet's credibility to come up with such wildly incorrect titles and summaries.
More info on why this is a rubbish test
<a href="http://www.tuaw.com/2006/03/07/another-look-at-mac-os-x-security/">http://www.tuaw.com/2006/03/07/another-look-at-mac-os-x-security/</a>
THe hacker is a scumbag who thinks too highly of himself.
http://test.doit.wisc.edu/
You can make up any excuses you like, but if you hack this truly proper test, then I would consider you pretty l33t ..anyone can hack a machine when they already have an account. Is this exploit important? Sure, any security vulnerability is a problem. But will my grandma care? No - she doesn't even know how to give accounts out to people.
Heres the keys to my house
see if you can break in..
heheh
sad sad sad..
Until he produces those logs, his assertion that the system was compromised is fraudulent.
Microsoft can't fix their own pile of shit OS, so they are trying to pull OS-X into their cesspool to make them look like shit as well.
The thinking class isn't deceived but the usual morons in the media and blindingly stupid Windows users will feel better and swallow this turd whole as usual.
"
The only insecurity associated with OS-X is the fear and terror the competition feels at it's superiority in every way. That's why there is this concerted effort to make OS-X look look like (Windows) crap, even if the supposed breaches, worms and viruses are all vapourware and lies. If you bothered to investigate you'd already know this, just as Mac users know.
Nobody ever went wrong by underestimated the gullibility or stupidity of Americans. Microsoft plays them like the moronic drones they are and has done so continuously for decades. Hey pretty soon Microsoft will release a vapourware security program to content with the vapourware malware stories they are hyping / inventing for OS-X. They'll sell it to Windrones to protect against this new threat so all Mac users can then be safe.
shit. Just deal with it you morons. Mac has always been third-rate.
One thing, you mate are an idiot, 5 min to hack a PC, good luck with my setup. Nothings perfect but you think you can hack a PC protected by a third party firewall in 5 min goodluck, basically you don't know what firewall i use. It's even funnier because you are having ago at crazy unsubstantiated comments by taking a swipe at windows with the same type of comments. Good one.
Face it MAC finatics your OS is NOT propular enough to warrent the effort to write something for them, why would anyone bother, as much as this test was crap, the fact that there is not enough market share to warrent and decent attention.
In my opinion MAC's suck, Linux Rules, Mirosoft is OK. I know MAC's are based on linux, but Mac's will end up the same as microsoft if they had the same market share.