1. Forum
  2. Newsgroups
  3. comp.sys.mac.system

  • Re: Sequoia 15 - Passwords / Errata /^

    From Alan Browne@bitbucket@blackhole.com to comp.sys.mac.system on Tue Sep 24 17:10:49 2024
    From Newsgroup: comp.sys.mac.system

    On 2024-09-24 17:01, Alan Browne wrote:
    On 2024-09-24 14:18, Jolly Roger wrote:

    I do have a minor gripe with the new Passwords app: When viewing the
    details page for a given password, the 2FA code doesn't display any sort

    I think you meant One-time-password here, not 2FA.

    of visual count down to when they expire and change to a new number.
    So you might start to enter a number only to have it change before you
    are done. Other 2FA authenticator apps I've used give you an
    indication (such as

    Haven't used Apple Password 2FA gen'd codes so no comment - but I get
    OTP
    what you mean.  Usually (from my side) the 2FA is the site I'm logging
    onto sending a code via SMS (which is not super secure[1]).


    [1] Veritasium hacks Linus Tech Tips phone: https://www.youtube.com/watch?v=wVyu7NB7W6Y
    --
    "It would be a measureless disaster if Russian barbarism overlaid
    the culture and independence of the ancient States of Europe."
    Winston Churchill

    --- Synchronet 3.20a-Linux NewsLink 1.114
  • From Jolly Roger@jollyroger@pobox.com to comp.sys.mac.system on Tue Sep 24 22:01:15 2024
    From Newsgroup: comp.sys.mac.system

    On 2024-09-24, Alan Browne <bitbucket@blackhole.com> wrote:
    On 2024-09-24 17:01, Alan Browne wrote:
    On 2024-09-24 14:18, Jolly Roger wrote:

    I do have a minor gripe with the new Passwords app: When viewing the
    details page for a given password, the 2FA code doesn't display any sort

    I think you meant One-time-password here, not 2FA.

    of visual count down to when they expire and change to a new number.
    So you might start to enter a number only to have it change before you
    are done. Other 2FA authenticator apps I've used give you an
    indication (such as

    Haven't used Apple Password 2FA gen'd codes so no comment - but I get
    OTP
    what you mean.  Usually (from my side) the 2FA is the site I'm logging
    onto sending a code via SMS (which is not super secure[1]).

    I did, thanks for the correction!

    [1] Veritasium hacks Linus Tech Tips phone: https://www.youtube.com/watch?v=wVyu7NB7W6Y

    Yep! SMS messages can also be easily spoofed. It's just not secure by
    design.
    --
    E-mail sent to this address may be devoured by my ravenous SPAM filter.
    I often ignore posts from Google. Use a real news client instead.

    JR
    --- Synchronet 3.20a-Linux NewsLink 1.114
  • From Alan Browne@bitbucket@blackhole.com to comp.sys.mac.system on Sat Oct 26 14:59:43 2024
    From Newsgroup: comp.sys.mac.system

    On 2024-09-24 17:01, Alan Browne wrote:

    With the new Apple version there's a bug logging into my bank however. Hopefully gets resolved - otherwise I have to copy paste the password.


    Turns out that if I leave the "remember this card" option checked, then
    it will enter the password when I touch the fingreprint reader. With
    the option checked on, the card number is partially obscured.

    But if I clear the "remember this card" option, then it will fill the
    card number and password one time; but not the password on successive
    login attempts - only the card number.

    Quite strange.

    Anyway, leaving the "Remember this card" option on.
    --
    "It would be a measureless disaster if Russian barbarism overlaid
    the culture and independence of the ancient States of Europe."
    Winston Churchill

    --- Synchronet 3.20a-Linux NewsLink 1.114