Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the 'Two ways to possibly close an ARDAgent security hole' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
Two ways to possibly close an ARDAgent security hole
Authored by: hintuser on Jun 27, '08 08:47:55AM

If you don't like to "play" with Terminal command lines, you will appreciate this simple script to defend yourself against this ARDAgent weakness.

Copy this script in Script Editor and run it; it will ask you to enter your admin password, correct the problem and show you that ARDAgent, from now on, can ONLY run scripts with your regular permissions, not as root as before.

The script :

do shell script "sudo chmod 755 /System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/MacOS/ARDAgent" with administrator privileges

tell application "ARDAgent"
set running_as to do shell script "whoami"
end tell
display dialog "Running as " & running_as



[ Reply to This | # ]