Am I the only one who thinks OSX is stupidly insecure unless you encrypt the whole disk? I mean, how dumb is it to boot into safe moot and provide a root shell without prompting for credentials?

Yes and no tbh, yes if it is a laptop which could be stolen then yes root shell without creds is stupid.

But in-case of an iMac, mac mini I don't think this is a security issue, or at least a huge one.

Really any unencrypted hard drive is unsecured. I guess having that reality shoved in your face with the easy root shell access is the kicker huh

@irene
My arse is secure. It's even booby trapped

It doesn't matter. If you truly want to protect your files, encrypt your drive.
Even Linux allows Root access through recovery options. (I don't know about Windows) but I can easily put in a usb, go into live Linux session and access your drives anyway.

Bottom line: If anyone has access to your machine, they can access all your files ( unless they are encrypted) no matter which OS you put.

So the option to access Root directly is very useful in case you forget your password or for any reason unable to log in.

@Konsole
I know what you mean but Windows recovery console prompts for administrator's password

@FuckJava does it matter? If I steal your computer, I can do whatever I want.

@FuckJava There are ways to bypass auth completely in Windows using a Windows live usb. I can have access to admin account without password

@Konsole
Yes. But if I've stepped out of the office for lunch my colleagues can't access my nudes on my Windows machine by simply holding Windows+S during boot

@redman Yes. I already said
> If you truly want to protect your files, encrypt your drive

@KartSriv
I like the way Arse sounds. I live with 50 million kangaroos, yes. But luckily my accent is very non-British. English is, like, my 4th language

@FuckJava True. But again if I wanted to get into your machine, I would keep a Linux bootable usb with me. It would take less than 10 mins to take the files probably. 🤷

@Konsole
My machine doesn't boot from USB. You'd need to physically open it to clear CMOS. Good luck doing that while I'm getting a burger

@FuckJava A determined individual would go to any lengths.

@Konsole
I know. I'm merely interested in protecting my nudes and my pornhub bookmarks during lunch. I'm not trying to stop the 13 year old who hacked Apple twice from seeing my hairy arse

@irene
🤣

@irene
I'm seriously RoFL

@irene
I know Aussies have a reputation of not using protection, but I'm proud to say I use condoms on my fingers whenever I have to touch Java

@irene
Only when I'm coding in Java.

@irene
True

Commodore 64 is more secure.

Security is a process, not a product. Saying things like "Windows is insecure" or "Linux is insecure" doesn't make much sense.

It would be more appropriate to say "on my system, macOS is configured in an insecure way" which immediately leads to the process "I have to secure my system".

@irene
I love your thinking. Let's get married and secure Macs for a living

@irene 💔

Of course macOS is not secure. All you need to do is inserting an 'r', and everyone knows where that ends.

I had to reinstall macOS yesterday as “System” was taking up 64GB of my 128GB drive and now by default it asks you if you want to encrypt your system drive. So if you turn it off, I’m coming to hack you 😂

@irene I would prefer this procedure: Sell the Mac, use the money to buy a decent laptop and a used car.

"Safe moot" 🤣

You're not wrong...