Edit: After half day, my wife’s Mac started having the same problem. I have then applied the solution that I found in the Apple
Mac Threat for Businesses
Apple Mac computers are considered as the strongest competitor of the Windows operating system or it can be clearly said that these computers have invaded the market and had occupied a large share in the market of operating systems. Although, the company is constantly reviewing the functioning and security aspects of all its products, but the latest product of the company has posed a serious threat for business networks which are using the system in order to stay connected with the most popular version of the centralized networks.
The prevailing issue is that those who log into the Mac’s OS X 10.7 Lion version have complete access to restricted areas by the input of any password other than the original one when the machine uses the Lightweight Directory Access Protocol (LDAP) mode technology which is used for authentication. The nature of these protocols is that they contain repositories which includes highly sensitive business data which are considered as a goldmine for attackers and access to which can pose a serious risk to the secrets of the business.
According to a research made by the CEO of an auditing firm Errata Security, Rob Graham, said that once an attacker has gained access to the LDAP server, he can easily visit all the systems attached to it and can log into any restricted area of the particular system.
Although, the loop hole in the Mac running Lion is not quite understood by the parent company, as it has not yet admitted that the latest brand has bought in some serious security issues, however, according to different sources, it has affected the 10.7 Mac Lion which uses the LDAP server to authenticate its users to different desktop operators. As soon as the initial login is process is completed, the entire system comes to a security threat as the Lion user can now enter into any restricted area with the input of any password. The newly released model of Mac operating system has the habit of accepting any password which is given to it.
According to the other experts who participated in the discussion cleared that the issue is solely associated with the Lion version and not with the previous Mac models, those running with Windows and Linux have the authentication value of being simply perfect with the LDAP servers. Moreover, those protocols which are in close competition with the LDAP servers are also working fine with the LDAP session as reported by the same sources.
Another report regarding the problem stated that the security issue rose mainly after the up gradation from an earlier version of the Mac OS X to the Lion 10.7 Mac model. The first victim of the problem was reported merely after 5 days of the release of the newer version and quite amazingly, the company did not showed any concern in the latest update made in the Lion 10.7.1, which reported a major fix in the Wi-Fi, video and audio part of the operating system.
The Mac operating system, being reluctant to the attack of malicious software’s and other similar attacks as experienced by its users, as compared to the Windows OS. This is a partial reason as to why the smaller market share of the Mac OS does not make it worth investing to write those highly weaponized dangers which hijack the Mac OS X users. In addition to this, the non-trivial talent and resources the Apple Inc has inserted for the purpose of securing its operating systems and particularly, the Lion version.
The Apple Mac OS X is a great selection for individuals who want to have a system which is free from the malware attacks present in the cyber world, but the same system should be a well thought decision for business enterprises before a large quantity of these systems have been deployed. It is recommended on the findings that many of the components of the Mac OS X, lacks the authentication protocols which offers security to the systems, thereby, making the entire network vulnerable to the so-named APT’s which is an abbreviated form of advanced persistent threats and operates to steal enterprises data and other security oriented information, leakage of which can pose serious threat to the related organization.
It is hoped, the constant coverage on the issue, will lead the Apple Company to invest in this security issue in order to make the Lion model, useful for the end user.