Profile

Cover photo
Mitesh Shah
Lives in Bangalore, India
4,267 followers|1,806,644 views
AboutPostsPhotosYouTube+1's

Stream

Mitesh Shah

Discussion  - 
 
 
How to bypass Apple’s security and gain administrator-level privileges on an OS X Yosemite Mac using code that fits in above tweet.

#Apple   #MAC   #Yosemite   #OSX   #Security   #Exploit  
How to bypass Apple's security and gain administrator-level privileges on an OS X Yosemite Mac using code that fits in a tweet.
View original post
1
Ilkka Viinikanoja's profile photoManny Fernandez's profile photo
2 comments
 
At RSA this year there was a talk around this. Check out knockknock and blockblock 
Add a comment...
 
 
How to bypass Apple’s security and gain administrator-level privileges on an OS X Yosemite Mac using code that fits in above tweet.

#Apple   #MAC   #Yosemite   #OSX   #Security   #Exploit  
How to bypass Apple's security and gain administrator-level privileges on an OS X Yosemite Mac using code that fits in a tweet.
View original post
2
David A's profile photo
David A
 
Of course, on android or linux this would be a lot easier.
Add a comment...

Mitesh Shah

Shared publicly  - 
 
How to bypass Apple’s security and gain administrator-level privileges on an OS X Yosemite Mac using code that fits in above tweet.

#Apple   #MAC   #Yosemite   #OSX   #Security   #Exploit  
How to bypass Apple's security and gain administrator-level privileges on an OS X Yosemite Mac using code that fits in a tweet.
2
1
Mitesh Shah's profile photo
Add a comment...

Mitesh Shah

Shared publicly  - 
 
 
Wow. Check out this old ad for a 10MB and 26MB hard disk system. #nostalgia  
14 comments on original post
8
4
Carl Draper's profile photoioana ma's profile photoBrian Wagner's profile photoBijan Binaee's profile photo
2 comments
 
Who could ever need 26 MB? ;-)
Add a comment...

Mitesh Shah

Shared publicly  - 
 
A cURL & wget Alternative HTTPie

HTTPie - Command Line HTTP Client.
Also known for cURL and wget command Alternative.
HTTPie goal is to make CLI interaction with web services as human-friendly as possible.

#curl   #wget   #httpie  
HTTPie - Command Line HTTP Client, Also Known for cURL and wget command Alternative.
3
Add a comment...
Have him in circles
4,267 people
Allen Shockley's profile photo
Manish A.Shetty's profile photo
Jon Jørgensen's profile photo
Alice Chen's profile photo
Mumsie Luubzya's profile photo
Bill Doan's profile photo
Jane Haw De's profile photo
Mathieu Combaudon's profile photo
SUSE's profile photo
 
 
How to bypass Apple’s security and gain administrator-level privileges on an OS X Yosemite Mac using code that fits in above tweet.

#Apple   #MAC   #Yosemite   #OSX   #Security   #Exploit  
How to bypass Apple's security and gain administrator-level privileges on an OS X Yosemite Mac using code that fits in a tweet.
View original post
1
Michael Slomma's profile photoDave Trautman's profile photo
2 comments
 
All I've read about this seems to say a person has to have physical access to my Yosemite machine to set up the exploit. It's not a remote code vulnerability - as far as I've seen.

Perhaps someone could clarify for me.

I have to paste this exploit into my terminal app for it to set me up for root access and further exploits. If my machine is secure from people wanting to set this up then I'm not sure what the problem is.

A person with access to my machine could set up root access without this 'exploit' if I was logged in as Admin. Isn't this just a dyld oversight and will easily be deprecated on the next update? Or would that kill some other process which needs a less restricted dyld action.



Add a comment...

Mitesh Shah

Updates  - 
 
 
How to bypass Apple’s security and gain administrator-level privileges on an OS X Yosemite Mac using code that fits in above tweet.

#Apple   #MAC   #Yosemite   #OSX   #Security   #Exploit  
How to bypass Apple's security and gain administrator-level privileges on an OS X Yosemite Mac using code that fits in a tweet.
View original post
1
Add a comment...

Mitesh Shah

Shared publicly  - 
 
#MAC  OS X 10.10 Local Privilege Escalation
DYLD_PRINT_TO_FILE: This is a path to a (writable) file. Normally, the dynamic linker writes all logging output (triggered by DYLD_PRINT_* settings) to file descriptor 2 (which is usually stderr). But this setting causes the dynamic linker to write logging output to the specified file.
1
Add a comment...

Mitesh Shah

Shared publicly  - 
 
NGINX - Time Based Rewriting Rules

Last night one of my friend asked me to write some simple re-write rules for his website maintenance.
So all the visitors should be rewrite to the maintenance page easy right ?
Unfortunately, the website maintenance windows is between 2:00 AM to 4:00 AM, and i was not interested on stay awake till that time.

#NGINX   #LINUX   #SYSADMIN  
How to tell NGINX to change it's behavior for specific time windows. Extremely useful for lazy system admins like me
1
Add a comment...

Mitesh Shah

Shared publicly  - 
 
How to Remove/uninstall Adobe Flash Player From Windows/Linux/Mac OS

Adobe Flash Player is also known for more security holes than Swiss cheese.

#Adobe   #Flash   #Security   #Linux   #Windows   #MAC  
2
1
Jaime Maia's profile photo
Add a comment...

Mitesh Shah

Shared publicly  - 
 
Check Website Performance Online

#Website   #SystemAdmin  
Studies show that users leave a site if it hasn't loaded in 4 seconds; keep your users happy and engaged by providing a fast performing website!
1
Add a comment...

Mitesh Shah

Shared publicly  - 
 
 
I don't have the hi-res in-the-air pictures yet, but here's me looking cool.

Although apparently +Jim Zemlin was laughing so hard when I did the thumbs-up sign that the camera shake makes that picture a bit blurry. Thanks, Jim.
178 comments on original post
8
1
Bijan Binaee's profile photo
Add a comment...
People
Have him in circles
4,267 people
Allen Shockley's profile photo
Manish A.Shetty's profile photo
Jon Jørgensen's profile photo
Alice Chen's profile photo
Mumsie Luubzya's profile photo
Bill Doan's profile photo
Jane Haw De's profile photo
Mathieu Combaudon's profile photo
SUSE's profile photo
Work
Occupation
System Administrator
Skills
Linux, Ubuntu, Shell Script, Bash, Nginx, Fedora, Pentesting
Basic Information
Gender
Male
Birthday
September 5
Relationship
Married
Story
Tagline
GNU/Linux System Administrator
Introduction
Hello, Friends!

I Like,
Do As A Hobby,
Or Am Interested In:
  • FOSS
  • GNU/Linux
  • Android OS
  • Shell Scripting
  • Home Automation With Linux

My Favorite Article List



But here I'm also trying to talk and write in English too. English isn't my native language and I'm still learning grammar and hardly working on my active vocabulary.


GPG KEY ID: 0xF8B50482

GPG Key Fingerprint:
84A4 7F25 D375 16F3 2D85 B47A 581B 905E F8B5 0482
Bragging rights
01001001 00100000 01100001 01101101 00100000 01110010 01101111 01101111 01110100 00100000 01001001 01100110 00100000 01111001 01101111 01110101 00100000 01110011 01100101 01100101 00100000 01101101 01100101 00100000 01101100 01100001 01110101 01100111 01101000 01101001 01101110 01100111 00100000 01111001 01101111 01110101 00100000 01100010 01100101 01110100 01110100 01100101 01110010 00100000 01101000 01100001 01110110 01100101 00100000 01100001 00100000 01100010 01100001 01100011 01101011 01110101 01110000 00100001
Places
Map of the places this user has livedMap of the places this user has livedMap of the places this user has lived
Currently
Bangalore, India
Previously
Pune, India - Ahmedabad, India - Visnagar, India
Mitesh Shah's +1's are the things they like, agree with, or want to recommend.
How To Install and Use EasyEngine (ee) on Ubuntu | vexxblog
vexxhost.com

EasyEngine (ee) is a collection of Linux shell scripts which make the management of multiple websites and WordPress blogs that run on Nginx,

Build Faster WordPress Sites with Nginx – In 3 Lines!
www.linux.com

Build Faster WordPress Sites with Nginx – In 3 Lines!

rtCamp
plus.google.com

Empowering the web with WordPress!

Linux.com | The source for Linux information
www.linux.com

Linux.com - For the community, by the community, Linux.com is the central source for Linux information, software, documentation, how-tos and

The Linux Kernel Archives
www.kernel.org

Site News. As noted previously, kernel.org suffered a security breach. Because of this, we have taken the time to rearchitect the site in or

Linux
plus.google.com

Linux - doing it right

The Linux Foundation
www.linuxfoundation.org

The Linux Foundation is a non-profit consortium dedicated to fostering the growth of Linux, and promoting standardization and technical coll

Linux - Wikipedia, the free encyclopedia
en.wikipedia.org

A distribution is largely driven by its developer and user communities. Some vendors develop and fund their distributions on a volunteer bas

Linus Torvalds - Wikipedia, the free encyclopedia
en.wikipedia.org

Initially Torvalds wanted to call the kernel he developed Freax (a combination of "free", "freak", and the letter X to i

Homepage | Ubuntu
www.ubuntu.com

Overview · Web browsing · Office applications · Social and email · Music and mobile · Photos and videos · Ubuntu Software Centre · Ubuntu On

Fedora Project Homepage
fedoraproject.org

Your life on Fedora. Steve, Information Security Analyst. Steve Milner is an information security analyst from North Carolina. He uses Fedor

The Plan for Code
open.nasa.gov

Today we are launching code.nasa.gov, the latest member of the open NASA web family. Through this website, we will continue, unify, and expa

Interactive map of Linux kernel
www.makelinux.net

Mouse: Drag - pan Wheel, Dbl Click - zoom Items - links Keyboard: PgDn, PgUp - zoom arrows - pan Recommended: • Android internals • Wall pos