Forums
New posts
Articles
Product Reviews
Policies
FAQ
Log in
Register
What's new
Search
Search
Search titles only
By:
New posts
Menu
Log in
Register
Install the app
Install
Forums
General Discussions
Security Awareness
2 factor authentication...and Potential Lost iPhone
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="MacInWin" data-source="post: 1848275" data-attributes="member: 396914"><p>2FA is here to stay. Not only is it more security (not perfect, just more), but it also protects Apple from legal claims that they "didn't do enough." Remember the celebrity nude photos that were stolen from iCloud <a href="https://en.wikipedia.org/wiki/ICloud_leaks_of_celebrity_photos" target="_blank">iCloud leaks of celebrity photos - Wikipedia</a></p><p>and the furor that was initially directed at Apple because iCloud was "hacked?" Turned out the victims were spear phished for passwords, and then those used to get the images from iCloud. Apple started offering 2FA shortly after that. Later it became mandatory. And it's not just Apple. My bank uses it, my insurance company, my credit union, my doctor, my cellphone service provider, even some "frequent user" accounts now have it. It's a PITA, but then again so are locks on the doors on my house and my car. Security is always a pain.</p><p></p><p>I use long (18-24 characters) randomly generated passwords, never use one twice, use a password keeper to hold them all, and then 2FA adds one more layer. </p><p></p><p>As for the code showing up on a Mac when you are on the Mac and it is required, if you want you can remove the Mac from the list of trusted devices and it will no longer show up there. Of course, if you use Messages and have it open when the code comes in to your phone, it will show up in Messages. The security for that is to have a strong login password and a short time before the screen goes dark and the password is required to open the Mac. That way, even if someone steals it while running, as long as you have put it to sleep before you walked away (you DO do that, right? I mean, that's just basic security), they cannot do anything with it because it's locked. </p><p></p><p>As for "perfect" security, I know of ONE maybe close to perfect system. It was run by the CIA, in a vault in a shielded building, with two armed guards on the doors, inner and outer, at all times, a triple filtered power system, no external connections, no printer, no removable storage and no connections inside the vault, one terminal and a requirement that two people had to be in the room at a time, to prevent anyone from wandering through the system. Nothing was allowed to be taken into or out of the room. Basically, the user and escort would sit at the terminal, get the information, memorize it, then walk out. ID required both ways through the door. Pockets emptied, no watches, phones, no electronics at all allowed in the vault.</p><p></p><p>Short of that, nothing is really secure.</p></blockquote><p></p>
[QUOTE="MacInWin, post: 1848275, member: 396914"] 2FA is here to stay. Not only is it more security (not perfect, just more), but it also protects Apple from legal claims that they "didn't do enough." Remember the celebrity nude photos that were stolen from iCloud [url=https://en.wikipedia.org/wiki/ICloud_leaks_of_celebrity_photos]iCloud leaks of celebrity photos - Wikipedia[/url] and the furor that was initially directed at Apple because iCloud was "hacked?" Turned out the victims were spear phished for passwords, and then those used to get the images from iCloud. Apple started offering 2FA shortly after that. Later it became mandatory. And it's not just Apple. My bank uses it, my insurance company, my credit union, my doctor, my cellphone service provider, even some "frequent user" accounts now have it. It's a PITA, but then again so are locks on the doors on my house and my car. Security is always a pain. I use long (18-24 characters) randomly generated passwords, never use one twice, use a password keeper to hold them all, and then 2FA adds one more layer. As for the code showing up on a Mac when you are on the Mac and it is required, if you want you can remove the Mac from the list of trusted devices and it will no longer show up there. Of course, if you use Messages and have it open when the code comes in to your phone, it will show up in Messages. The security for that is to have a strong login password and a short time before the screen goes dark and the password is required to open the Mac. That way, even if someone steals it while running, as long as you have put it to sleep before you walked away (you DO do that, right? I mean, that's just basic security), they cannot do anything with it because it's locked. As for "perfect" security, I know of ONE maybe close to perfect system. It was run by the CIA, in a vault in a shielded building, with two armed guards on the doors, inner and outer, at all times, a triple filtered power system, no external connections, no printer, no removable storage and no connections inside the vault, one terminal and a requirement that two people had to be in the room at a time, to prevent anyone from wandering through the system. Nothing was allowed to be taken into or out of the room. Basically, the user and escort would sit at the terminal, get the information, memorize it, then walk out. ID required both ways through the door. Pockets emptied, no watches, phones, no electronics at all allowed in the vault. Short of that, nothing is really secure. [/QUOTE]
Verification
Name this item. 🍎
Post reply
Forums
General Discussions
Security Awareness
2 factor authentication...and Potential Lost iPhone
Top
