I'm inclined to agree. It looks like this is the same "hack" detailed last week,... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

jdechko on Sept 13, 2012 | parent | context | favorite | on: OSX password script for everyone to know

I'm inclined to agree. It looks like this is the same "hack" detailed last week, though through a terminal command instead of an application. As we learned last week, by default, OS X is set to never lock the keychain once it is logged in. It's a conscious choice of default set by Apple. If you care about tighter security, just change the autolock time or use separate keychains.

Bakkot on Sept 14, 2012 [–]

No, last week's was root only, operated by searching through RAM for various keys, and was notable for displaying passwords for every logged-in user, which this will not do.

Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact