Hacker News new | ask | show | jobs
by lawnchair_larry 5388 days ago
That risk level is not at all on par with this though. That won't help with filevault turned on, and it requires both a reboot and a physical presence at the machine. This can be done remotely with shell access, and discloses hashes from other accounts.
2 comments
caf 5388 days ago
In other words, it can be done remotely through a browser exploit.
link
Locke1689 5388 days ago
This also won't help with filevault turned on.
link