How to Break Into a Mac (And Prevent It from Happening to You)
https://haxordoubt.blogspot.com/2012/10/how-to-break-into-mac-and-prevent-it.html
Even if you aren't a sinister evildoer, there could be times when you need to get into a computer without the password. It's quite easy to do on a Mac, and learning how to do it can help you keep yourself better protected, too. Here's how it works.
Most methods of breaking into a Mac are variations on the same thing, so we're going to highlight the two easiest ways—one with a Mac OS X installer and one without—and show you how to avoid having them used on you. Note that while these two methods will get you into the OS without knowing the password, you can always just use our previously mentioned "lazy method" with a Mac too—just boot up the computer with a Linux Live CD and start grabbing files.
Both methods outline ways to reset the Mac OS X password. While there are cracking utilities like John the Ripper or THC-Hydra, they're either complicated to use or expensive to buy, so we won't go into them here like we did with Windows (which has the very easy-to-use Ophcrack).
Method One: Use the Mac OS X Installer CD
resetpassword
, and press Enter to get to the password reset menu.
Enter a new password for that user and hit the save button. That's it! When you reboot the computer, you can use your new password to log into the computer. Note that unfortunately, you still won't be able to unlock the Keychain, so if what you're trying to access has another layer of password protection, you need to do some extra legwork to view it.
Method Two: Boot into Single-User Mode
If you don't have an installer CD handy, you just need to do a bit of fancy command-line footwork to achieve the same end as the CD method. Boot up the computer, holding Command+S as you hear the startup chime. The Mac will boot into single user mode, giving you a command prompt after loading everything up. If the Mac is running Snow Leopard or below, type the following commands, hitting Enter after each one and waiting for the prompt to come up again before running the next one:
If the Mac is running Lion or above, you'll instead want to use the following commands:
Replace
whitsongordon
with the user whose account you want to access and lifehacker
with the new password you want to assign to that user. If you get an error message aboutcom.apple.DirectoryServicesLocal.plist
on a Lion or Mountain Lion machine, just ignore it—the password reset should have still worked.
If you don't know the user's username, it should be pretty easy to run
ls /Users
at any time during single user mode to list all the home folders on the Mac, which usually correspond to the usernames available on the Mac. Note that, once again, this doesn't give you access to the OS X Keychain, so anything protected with another layer of passwords will be off-limits.How to Protect Your Mac from Being Broken Into
Both of these methods are easy to pull off, but if your victim has encrypted their hard drive, you won't be able to see or reset the password. So, to protect yourself, it's a good idea to turn on FileVault under System Preferences > Security.
However, for even more protection, you can set up a firmware password on your machine. Just boot up from the OS X Installer CD and go to Utilities > Firmware Password Utility and set a firmware password. This prevents other folks from being able to boot up your computer from another hard disk, CD, or even in single user mode. Someone with bad intentions could still bypass it, but it would require quite a bit of alone time with your hardware. So, for best results, you'll probably want to have both layers of protection: encrypt your drive with FileVault and set up a firmware password using the installer CD.
As always, these are just a few of the easiest ways to break into a Mac. Try it for yourself on your own machine—you'll be shocked at how easy it is for someone to get into your machine. The takeaway? Set up FileVault and a firmware password to keep yourself protected.
Source: Lifehacker