Is my system vulnerable to Apple's new password-in-clear-text bug?

macos security password user-account

Solution 1:

As stated in the article linked in the question:

Anyone who used FileVault encryption on their Mac prior to Lion, upgraded to Lion, but kept the folders encrypted using the legacy version of FileVault is vulnerable. FileVault 2 (whole disk encryption) is unaffected.

The password shows up in /var/log/secure.log. To look for it, log in as an Administrator, open Terminal.app and run

sudo grep -i passwordAsUTF8String /var/log/secure.log

Have a look at the result (if any) to see whether passwords appear in plain text.

For additional information see

  • Apple update to OS X Lion exposes encryption passwords
  • Apple Legacy Filevault Hole

Related

Executables in /bin and /usr/bin are not found in path
Changing keyboard shortcut for cycling through windows? (Lion)
Can I remove original music file after imported into iTunes w/ copy enabled
Is it possible to receive SMS with the Messages beta for OS X?
What's the "@"mark at the file description?
Can you use an iMac backup for a MacBook Pro?
iPhone died, then started working
Is there a way to tell if I can use a SATA III SSD in my early 2011 MBP 15"?
French canadian keyboard layout
How to prevent loading some LaunchDaemons?
If I sell my iPhone, how will the warranty be affected?
Can I do iOS like dictation on OS X Lion?