Re: The dark side of Apple's two-factor authentication
Hi, Christina, The iCloud passcode is set up when you activate Keychain for storing your passwords. I don't know how two-step verification works if you don't have one. It may prompt you to set one up. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 11, 2014, at 8:49 PM, Christina C. blindmaclo...@gmail.com wrote: Hmmm, I don’t remember being given an option of two different ones. I just signed up years ago in iTunes when I started buying music from apple and didn’t hav an iPhone or anything, than when iCloud came out it seems like I remember just signing in with my iTunes account which I guess is the same as my apple ID? I’m pretty confused. I don’t remember apple asking me if I wanted them different or the same. :) Thanks, Christina On Dec 11, 2014, at 9:37 PM, Neal Ewers neal.ew...@ravenswood.org wrote: Christina. You can certainly have them be the same. Some people choose not to do that, but, as I said, you can choose to have them the same if you wish. Neal From: viphone@googlegroups.com [mailto:viphone@googlegroups.com] On Behalf Of Christina C. Sent: Thursday, December 11, 2014 9:50 PM To: viphone@googlegroups.com Subject: Re: The dark side of Apple's two-factor authentication Teresa, What’s the difference between my iCloud passcode and my account password? I thought mine were one in the same. I thought I only had one and it is both my apple ID and my iCloud account with the same username and password? Thanks for any clarification, Christina On Dec 9, 2014, at 10:14 PM, Teresa Cochran batsfly...@me.com wrote: What you have to do is provide both your iCloud passcode (not your account password) *and your trusted device that you've already set up is sent a text message with a six-digit code with a short expiration period. ONLY when you do these two steps can you reset your key, hence two-factor authentication. I speak from experience, having followed those instructions and reset my key. :) Teresa -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post
Re: The dark side of Apple's two-factor authentication
Thanks, on my iPhone I do have keychain turned on. In iCloud settings, keychain, advanced, it says that I have approve with security code turned on. I might remember choosing this but I don’t remember ever getting a code and being prompted to save it in a safe place. How do I go about getting this code? Or, maybe I should turn it off and go with a security question. I feel so confused but I am so happy to be informed or at least I am working to be informed. :) Christina On Dec 12, 2014, at 10:36 AM, Teresa Cochran batsfly...@me.com wrote: Hi, Christina, The iCloud passcode is set up when you activate Keychain for storing your passwords. I don't know how two-step verification works if you don't have one. It may prompt you to set one up. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 11, 2014, at 8:49 PM, Christina C. blindmaclo...@gmail.com mailto:blindmaclo...@gmail.com wrote: Hmmm, I don’t remember being given an option of two different ones. I just signed up years ago in iTunes when I started buying music from apple and didn’t have an iPhone or anything, than when iCloud came out it seems like I remember just signing in with my iTunes account which I guess is the same as my apple ID? I’m pretty confused. I don’t remember apple asking me if I wanted them different or the same. :) Thanks, Christina On Dec 11, 2014, at 9:37 PM, Neal Ewers neal.ew...@ravenswood.org mailto:neal.ew...@ravenswood.org wrote: Christina. You can certainly have them be the same. Some people choose not to do that, but, as I said, you can choose to have them the same if you wish. Neal From: viphone@googlegroups.com mailto:viphone@googlegroups.com [mailto:viphone@googlegroups.com mailto:viphone@googlegroups.com] On Behalf Of Christina C. Sent: Thursday, December 11, 2014 9:50 PM To: viphone@googlegroups.com mailto:viphone@googlegroups.com Subject: Re: The dark side of Apple's two-factor authentication Teresa, What’s the difference between my iCloud passcode and my account password? I thought mine were one in the same. I thought I only had one and it is both my apple ID and my iCloud account with the same username and password? Thanks for any clarification, Christina On Dec 9, 2014, at 10:14 PM, Teresa Cochran batsfly...@me.com mailto:batsfly...@me.com wrote: What you have to do is provide both your iCloud passcode (not your account password) *and your trusted device that you've already set up is sent a text message with a six-digit code with a short expiration period. ONLY when you do these two steps can you reset your key, hence two-factor authentication. I speak from experience, having followed those instructions and reset my key. :) Teresa -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/ http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com mailto:viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com mailto:viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/ http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com mailto:viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com mailto:viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone http://groups.google.com/group/viphone. For more options, visit https
Re: The dark side of Apple's two-factor authentication
There are three pieces of information you need for two-factor authentication: your iCloud passcode, a recovery key that you set up, and a device/texting number to use. You might try your iCloud password for the passcode. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 12, 2014, at 10:42 AM, Christina C. blindmaclo...@gmail.com wrote: Thanks, on my iPhone I do have keychain turned on. In iCloud settings, keychain, advanced, it says that I have approve with security code turned on. I might remember choosing this but I don’t remember ever getting a code and being prompted to save it in a safe place. How do I go about getting this code? Or, maybe I should turn it off and go with a security question. I feel so confused but I am so happy to be informed or at least I am working to be informed. :) Christina On Dec 12, 2014, at 10:36 AM, Teresa Cochran batsfly...@me.com wrote: Hi, Christina, The iCloud passcode is set up when you activate Keychain for storing your passwords. I don't know how two-step verification works if you don't have one. It may prompt you to set one up. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 11, 2014, at 8:49 PM, Christina C. blindmaclo...@gmail.com wrote: Hmmm, I don’t remember being given an option of two different ones. I just signed up years ago in iTunes when I started buying music from apple and didn’t have an iPhone or anything, than when iCloud came out it seems like I remember just signing in with my iTunes account which I guess is the same as my apple ID? I’m pretty confused. I don’t remember apple asking me if I wanted them different or the same. :) Thanks, Christina On Dec 11, 2014, at 9:37 PM, Neal Ewers neal.ew...@ravenswood.org wrote: Christina. You can certainly have them be the same. Some people choose not to do that, but, as I said, you can choose to have them the same if you wish. Neal From: viphone@googlegroups.com [mailto:viphone@googlegroups.com] On Behalf Of Christina C. Sent: Thursday, December 11, 2014 9:50 PM To: viphone@googlegroups.com Subject: Re: The dark side of Apple's two-factor authentication Teresa, What’s the difference between my iCloud passcode and my account password? I thought mine were one in the same. I thought I only had one and it is both my apple ID and my iCloud account with the same username and password? Thanks for any clarification, Christina On Dec 9, 2014, at 10:14 PM, Teresa Cochran batsfly...@me.com wrote: What you have to do is provide both your iCloud passcode (not your account password) *and your trusted device that you've already set up is sent a text message with a six-digit code with a short expiration period. ONLY when you do these two steps can you reset your key, hence two-factor authentication. I speak from experience, having followed those instructions and reset my key. :) Teresa -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members
Re: The dark side of Apple's two-factor authentication
iCloud Keychain has nothing to do with this two factor authentication thread we're talking about here. Two factor authentication adds another layer of protection to your Apple ID. Not only does it require the password for your Apple ID; it also requires you enter a security code shown on any or all of your trusted devices or a text-capable cellular phone you've added when setting up two factor authentication. If you do not have any of these then a recovery key is required to unlock your Apple ID. The recovery key is generated at random by Apple when setting up two factor authentication. iCloud Keychain however is a vault if you will where all your usernames and passwords, contact information and credit cards are stored in iCloud. This involves a different kind of two factor authentication; your Apple ID password and a security code which can either be the same as your device's passcode or one you choose. Either way you still have to verify your identity by entering another code they send to your text capable cellular phone. Sorry for the long reply but I hope you get the idea! On 12/12/2014 18:42, Christina C. wrote: Thanks, on my iPhone I do have keychain turned on. In iCloud settings, keychain, advanced, it says that I have approve with security code turned on. I might remember choosing this but I don’t remember ever getting a code and being prompted to save it in a safe place. How do I go about getting this code? Or, maybe I should turn it off and go with a security question. I feel so confused but I am so happy to be informed or at least I am working to be informed. :) Christina On Dec 12, 2014, at 10:36 AM, Teresa Cochran batsfly...@me.com wrote: Hi, Christina, The iCloud passcode is set up when you activate Keychain for storing your passwords. I don't know how two-step verification works if you don't have one. It may prompt you to set one up. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 11, 2014, at 8:49 PM, Christina C. blindmaclo...@gmail.com mailto:blindmaclo...@gmail.com wrote: Hmmm, I don’t remember being given an option of two different ones. I just signed up years ago in iTunes when I started buying music from apple and didn’t have an iPhone or anything, than when iCloud came out it seems like I remember just signing in with my iTunes account which I guess is the same as my apple ID? I’m pretty confused. I don’t remember apple asking me if I wanted them different or the same. :) Thanks, Christina On Dec 11, 2014, at 9:37 PM, Neal Ewers neal.ew...@ravenswood.org mailto:neal.ew...@ravenswood.org wrote: Christina. You can certainly have them be the same. Some people choose not to do that, but, as I said, you can choose to have them the same if you wish. Neal From: viphone@googlegroups.com mailto:viphone@googlegroups.com [mailto:viphone@googlegroups.com mailto:viphone@googlegroups.com] On Behalf Of Christina C. Sent: Thursday, December 11, 2014 9:50 PM To: viphone@googlegroups.com mailto:viphone@googlegroups.com Subject: Re: The dark side of Apple's two-factor authentication Teresa, What’s the difference between my iCloud passcode and my account password? I thought mine were one in the same. I thought I only had one and it is both my apple ID and my iCloud account with the same username and password? Thanks for any clarification, Christina On Dec 9, 2014, at 10:14 PM, Teresa Cochran batsfly...@me.com mailto:batsfly...@me.com wrote: What you have to do is provide both your iCloud passcode (not your account password) *and your trusted device that you've already set up is sent a text message with a six-digit code with a short expiration period. ONLY when you do these two steps can you reset your key, hence two-factor authentication. I speak from experience, having followed those instructions and reset my key. :) Teresa -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/ http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com mailto:viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com mailto:viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout https
Re: The dark side of Apple's two-factor authentication
ok, that makes some sense because when I turned keychain on I don’t remember anything about making a special iCloud passcode nor do I recall getting one with a message to save a code in a safe place. I would have done so. :) Christina On Dec 12, 2014, at 11:52 AM, Christopher Hallsworth challswor...@icloud.com wrote: iCloud Keychain has nothing to do with this two factor authentication thread we're talking about here. Two factor authentication adds another layer of protection to your Apple ID. Not only does it require the password for your Apple ID; it also requires you enter a security code shown on any or all of your trusted devices or a text-capable cellular phone you've added when setting up two factor authentication. If you do not have any of these then a recovery key is required to unlock your Apple ID. The recovery key is generated at random by Apple when setting up two factor authentication. iCloud Keychain however is a vault if you will where all your usernames and passwords, contact information and credit cards are stored in iCloud. This involves a different kind of two factor authentication; your Apple ID password and a security code which can either be the same as your device's passcode or one you choose. Either way you still have to verify your identity by entering another code they send to your text capable cellular phone. Sorry for the long reply but I hope you get the idea! On 12/12/2014 18:42, Christina C. wrote: Thanks, on my iPhone I do have keychain turned on. In iCloud settings, keychain, advanced, it says that I have approve with security code turned on. I might remember choosing this but I don’t remember ever getting a code and being prompted to save it in a safe place. How do I go about getting this code? Or, maybe I should turn it off and go with a security question. I feel so confused but I am so happy to be informed or at least I am working to be informed. :) Christina On Dec 12, 2014, at 10:36 AM, Teresa Cochran batsfly...@me.com wrote: Hi, Christina, The iCloud passcode is set up when you activate Keychain for storing your passwords. I don't know how two-step verification works if you don't have one. It may prompt you to set one up. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 11, 2014, at 8:49 PM, Christina C. blindmaclo...@gmail.com mailto:blindmaclo...@gmail.com wrote: Hmmm, I don’t remember being given an option of two different ones. I just signed up years ago in iTunes when I started buying music from apple and didn’t have an iPhone or anything, than when iCloud came out it seems like I remember just signing in with my iTunes account which I guess is the same as my apple ID? I’m pretty confused. I don’t remember apple asking me if I wanted them different or the same. :) Thanks, Christina On Dec 11, 2014, at 9:37 PM, Neal Ewers neal.ew...@ravenswood.org mailto:neal.ew...@ravenswood.org wrote: Christina. You can certainly have them be the same. Some people choose not to do that, but, as I said, you can choose to have them the same if you wish. Neal From: viphone@googlegroups.com mailto:viphone@googlegroups.com [mailto:viphone@googlegroups.com mailto:viphone@googlegroups.com] On Behalf Of Christina C. Sent: Thursday, December 11, 2014 9:50 PM To: viphone@googlegroups.com mailto:viphone@googlegroups.com Subject: Re: The dark side of Apple's two-factor authentication Teresa, What’s the difference between my iCloud passcode and my account password? I thought mine were one in the same. I thought I only had one and it is both my apple ID and my iCloud account with the same username and password? Thanks for any clarification, Christina On Dec 9, 2014, at 10:14 PM, Teresa Cochran batsfly...@me.com mailto:batsfly...@me.com wrote: What you have to do is provide both your iCloud passcode (not your account password) *and your trusted device that you've already set up is sent a text message with a six-digit code with a short expiration period. ONLY when you do these two steps can you reset your key, hence two-factor authentication. I speak from experience, having followed those instructions and reset my key. :) Teresa -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/ http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group
Re: The dark side of Apple's two-factor authentication
Teresa, What’s the difference between my iCloud passcode and my account password? I thought mine were one in the same. I thought I only had one and it is both my apple ID and my iCloud account with the same username and password? Thanks for any clarification, Christina On Dec 9, 2014, at 10:14 PM, Teresa Cochran batsfly...@me.com wrote: What you have to do is provide both your iCloud passcode (not your account password) *and your trusted device that you've already set up is sent a text message with a six-digit code with a short expiration period. ONLY when you do these two steps can you reset your key, hence two-factor authentication. I speak from experience, having followed those instructions and reset my key. :) Teresa -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout.
RE: The dark side of Apple's two-factor authentication
Christina. You can certainly have them be the same. Some people choose not to do that, but, as I said, you can choose to have them the same if you wish. Neal From: viphone@googlegroups.com [mailto:viphone@googlegroups.com] On Behalf Of Christina C. Sent: Thursday, December 11, 2014 9:50 PM To: viphone@googlegroups.com Subject: Re: The dark side of Apple's two-factor authentication Teresa, What’s the difference between my iCloud passcode and my account password? I thought mine were one in the same. I thought I only had one and it is both my apple ID and my iCloud account with the same username and password? Thanks for any clarification, Christina On Dec 9, 2014, at 10:14 PM, Teresa Cochran batsfly...@me.com wrote: What you have to do is provide both your iCloud passcode (not your account password) *and your trusted device that you've already set up is sent a text message with a six-digit code with a short expiration period. ONLY when you do these two steps can you reset your key, hence two-factor authentication. I speak from experience, having followed those instructions and reset my key. :) Teresa -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout.
Re: The dark side of Apple's two-factor authentication
Hmmm, I don’t remember being given an option of two different ones. I just signed up years ago in iTunes when I started buying music from apple and didn’t hav an iPhone or anything, than when iCloud came out it seems like I remember just signing in with my iTunes account which I guess is the same as my apple ID? I’m pretty confused. I don’t remember apple asking me if I wanted them different or the same. :) Thanks, Christina On Dec 11, 2014, at 9:37 PM, Neal Ewers neal.ew...@ravenswood.org wrote: Christina. You can certainly have them be the same. Some people choose not to do that, but, as I said, you can choose to have them the same if you wish. Neal From: viphone@googlegroups.com mailto:viphone@googlegroups.com [mailto:viphone@googlegroups.com mailto:viphone@googlegroups.com] On Behalf Of Christina C. Sent: Thursday, December 11, 2014 9:50 PM To: viphone@googlegroups.com mailto:viphone@googlegroups.com Subject: Re: The dark side of Apple's two-factor authentication Teresa, What’s the difference between my iCloud passcode and my account password? I thought mine were one in the same. I thought I only had one and it is both my apple ID and my iCloud account with the same username and password? Thanks for any clarification, Christina On Dec 9, 2014, at 10:14 PM, Teresa Cochran batsfly...@me.com mailto:batsfly...@me.com wrote: What you have to do is provide both your iCloud passcode (not your account password) *and your trusted device that you've already set up is sent a text message with a six-digit code with a short expiration period. ONLY when you do these two steps can you reset your key, hence two-factor authentication. I speak from experience, having followed those instructions and reset my key. :) Teresa -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/ http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com mailto:viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com mailto:viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/ http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com mailto:viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com mailto:viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout.
RE: The dark side of Apple's two-factor authentication
Jed, You only get a recovery code if you enable 2-step authentication which has to be done via the http://AppleID.apple.com website. If you log in and go to the security section you will find this. Using 2-step authentication means that if you try to sign in to iCloud or the Apple website from a device which is not recognized you will first provide your password, then a code is sent to one of your trusted devices (iPhone or iPad) and you have to enter this code in order to complete the login process. The recovery key is for situations where you forget your password or as in the article where somebody tries to access your account and it is blocked which I think Apple does after inputting your password incorrectly three times. Regards, Sieghard -Original Message- From: viphone@googlegroups.com [mailto:viphone@googlegroups.com] On Behalf Of Jed Barton Sent: Tuesday, December 09, 2014 9:53 PM To: viphone@googlegroups.com Subject: Re: The dark side of Apple's two-factor authentication so, here's the question. I ahve an ipad, and an iphone.I've never even ehard of this recovery key. Where would i get 1 from Apple? On 12/9/2014 3:10 PM, M. Taylor wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. Mark The dark side of Apple's two-factor authentication Earlier this week, a strange message popped up on my Mac that I thought nothing of. You can't sign in because your account was disabled for security reasons. I dismissed it in my tired haze, thinking it would solve itself and went to sleep. The next morning, I didn't have time to deal with the message - which was now popping up every half hour - for a few hours until it became annoying. I figured I'd done something dumb and broken iCloud, but that it could wait. I'd turned two-factor on my Apple ID in haste when I read Mat Honan's harrowing story about how his Mac, iPhone and other devices were wiped when someone broke into his iCloud account. That terrified me into thinking about real security for the first time. When I finally had time to investigate the errors appearing on my machine, I discovered that not only had my iCloud account been locked, but someone had tried to break in. Two-factor had done its job and kept the attacker out, however, it had also inadvertently locked me out. The Apple support page relating to lockouts assured me it would be easy to recover my account with a combination of any two of either my password, a trusted device or the two-factor recovery key. When I headed to the account recovery service, dubbed iForgot, I discovered that there was no way back in without my recovery key. That's when it hit me; I had no idea where my recovery key was or if I'd ever even put the piece of paper in a safe place. I've moved since I set up two-factor on iCloud. I began nervously scouring the entire house for the code, before giving up after a few frustrating hours and began searching my computer for any trace of it. I found countless recovery keys but they weren't for the right things; for my Mac's hard-drive encryption, Twitter, Facebook and other accounts, but not for my Apple ID. How could I be foolish enough to misplace my Apple ID recovery key? I swore that I'd taken a screenshot, printed it and had taken a photo of it with my iPhone for extra safekeeping. This is when it began to sink in that this single ID held the keys to much of my digital life; everything from iTunes purchases going back seven years, app purchases and even the ability to get my iPhone out of the grips of Find my iPhone's lock. The sinking feeling began. After fruitlessly searching and a lot of cussing, I decided to call Apple. I figured that something must be wrong, since the support page claims you can use trusted devices to recover your ID in cases like this. The first person I spoke to told me immediately after getting on the phone that in no uncertain terms I had forfeit my Apple ID by losing the recovery key. He refused to help me. I hung up and called back. On the second call, I got a lovely woman who totally understood my plight and how terrible it was. She told me a similar thing had happened to her, and it had turned out OK. After 20 minutes of poking around and lots of awkward sighing, she put me on hold to talk to a senior manager. When she got back on the line, the story was just as bleak. We take your security very seriously at Apple she told me but at this time we cannot grant you access back into your Apple account. We recommend you create a new Apple ID. I couldn't believe what I was hearing and fought back that surely there was some other way, but I was told point blank that Apple would not help me. I offered a scan of my government ID, my trusted devices and other proof that it was me. Nope
Re: The dark side of Apple's two-factor authentication
Theresa, Can I just clarify my understanding, please? When you set up the key, you presumably have to enter that trusted telephone number. What, exactly do you mean by In order to reset your key, you have to have access to a trusted text-receiving phone number and your iCloud passcond. You have to have any two of these to set a third, What do you mean by two of these and to set a third? Thanks and sorry to not grasp this. Carol P - Original Message - From: Teresa Cochran To: viphone@googlegroups.com Sent: Tuesday, December 09, 2014 10:03 PM Subject: Re: The dark side of Apple's two-factor authentication You can reset your key anytime, but Apple doesn't keep it for you. In order to reset your key, you have to have access to a trusted text-receiving phone number and your iCloud passcond. You have to have any two of these to set a third, and apparently, if you're locked out of your account for any reason, you have to have your key. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 1:40 PM, RobH. bobs...@googlemail.com wrote: Question: do you only get one of these keys when you opt for 2 factor logging? I've not seen, had, or have heard of these keys before now. RobH. - Original Message - From: Teresa Cochran batsfly...@me.com To: viphone@googlegroups.com Sent: Tuesday, December 09, 2014 8:33 PM Subject: Re: The dark side of Apple's two-factor authentication Hi, Mark and all, The other day I erased and restored my iPod. I'd lost my recovery key. I installed Google Voice and had a code sent to that phone number, which was already established as one of my trusted devices. I reset my recovery key this way. Needless to say, I'm going to Braille it and put it somewhere safe, in case someone tries too many times to log in (most likely me) and I get locked out. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 12:10 PM, M. Taylor mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com
Re: The dark side of Apple's two-factor authentication
Apple was actually doing their job here, what if that wasn't the real person, but a hacker instead? If you're going to use that kind of security, you need to understand the responsibility that goes with it. Again, personally I think using 2 step security and file vault is overkill, but if you choose to use it and then you don't keep track of your key, you have no one to blame but yourself. Original message: I do agree with this, Merv. The lady in th article does make some valid points but to me, she sounded a little whiny. Now I know it is frustrating but if you know there is 2 step verification and you use it, keep your stuff in multiple safe locations. Congratulations on having the only Dad return from the dead smile. On Dec 9, 2014, at 4:06 PM, Merv Keck blind5spar...@gmail.com mailto:blind5spar...@gmail.com wrote: Hi, I have to agree with you about two factor authentication and being responsible for your own security. About ten years ago my dad died and about a week later I saw him log into his Instant Messenger. Of course I knew it was a relative at the house snooping through his personal files so I wrote and asked him how he came back from the dead. It totally freaked my sister out trying to figure out how I knew she was in the house and on his computer. However, I having been his tech knew that he kept all his passwords on top of his monitor in a notebook labeled computer Passwords including the ones to his bank accounts, laughs! Merv -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/ http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com mailto:viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com mailto:viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/ http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com mailto:viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com mailto:viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout.
Re: The dark side of Apple's two-factor authentication
Very true. I haven't read the article but sounds like someone had more time to complain than feel security confident. On 10/12/2014 04:20, Joanne Chua wrote: I personally found this article is laughable. It is the user choice to activated two factor authentication for Apple, then, they complain about how, Apple being too overly safe and security conchious for user protection... It is not Apple's fault if individuals forget their passwords, or their activation code is there. Apple always got good repitation for security, and now, someone actually complaining about Apple being too safe? That just, doesn't make sense to me... On 10/12/2014, Mike Arrigo n0...@charter.net wrote: They were lucky that they found their key. If you're going to use that system, you need to keep it stored somewhere you can find it. Personally I think the 2 factor authentication is a bit overboard, but that's just my opinion. Original message: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. Mark The dark side of Apple's two-factor authentication Earlier this week, a strange message popped up on my Mac that I thought nothing of. You can't sign in because your account was disabled for security reasons. I dismissed it in my tired haze, thinking it would solve itself and went to sleep. The next morning, I didn't have time to deal with the message - which was now popping up every half hour - for a few hours until it became annoying. I figured I'd done something dumb and broken iCloud, but that it could wait. I'd turned two-factor on my Apple ID in haste when I read Mat Honan's harrowing story about how his Mac, iPhone and other devices were wiped when someone broke into his iCloud account. That terrified me into thinking about real security for the first time. When I finally had time to investigate the errors appearing on my machine, I discovered that not only had my iCloud account been locked, but someone had tried to break in. Two-factor had done its job and kept the attacker out, however, it had also inadvertently locked me out. The Apple support page relating to lockouts assured me it would be easy to recover my account with a combination of any two of either my password, a trusted device or the two-factor recovery key. When I headed to the account recovery service, dubbed iForgot, I discovered that there was no way back in without my recovery key. That's when it hit me; I had no idea where my recovery key was or if I'd ever even put the piece of paper in a safe place. I've moved since I set up two-factor on iCloud. I began nervously scouring the entire house for the code, before giving up after a few frustrating hours and began searching my computer for any trace of it. I found countless recovery keys but they weren't for the right things; for my Mac's hard-drive encryption, Twitter, Facebook and other accounts, but not for my Apple ID. How could I be foolish enough to misplace my Apple ID recovery key? I swore that I'd taken a screenshot, printed it and had taken a photo of it with my iPhone for extra safekeeping. This is when it began to sink in that this single ID held the keys to much of my digital life; everything from iTunes purchases going back seven years, app purchases and even the ability to get my iPhone out of the grips of Find my iPhone's lock. The sinking feeling began. After fruitlessly searching and a lot of cussing, I decided to call Apple. I figured that something must be wrong, since the support page claims you can use trusted devices to recover your ID in cases like this. The first person I spoke to told me immediately after getting on the phone that in no uncertain terms I had forfeit my Apple ID by losing the recovery key. He refused to help me. I hung up and called back. On the second call, I got a lovely woman who totally understood my plight and how terrible it was. She told me a similar thing had happened to her, and it had turned out OK. After 20 minutes of poking around and lots of awkward sighing, she put me on hold to talk to a senior manager. When she got back on the line, the story was just as bleak. We take your security very seriously at Apple she told me but at this time we cannot grant you access back into your Apple account. We recommend you create a new Apple ID. I couldn't believe what I was hearing and fought back that surely there was some other way, but I was told point blank that Apple would not help me. I offered a scan of my government ID, my trusted devices and other proof that it was me. Nope, that won't do for Apple in this situation. She apologized profusely and said there was nothing more should do. Furious about the situation, I took to Twitter in a fit of rage, complaining that Apple couldn't help me out of a dumb situation, in which I could easily prove who I was. It was frustrating enough that when setting up
Re: The dark side of Apple's two-factor authentication
Thanks for sharing. I did read somewhere that you must use a recovery key to unlock a locked account. This is probably overlooked though. You just can't win. An Apple ID without two factor authentication makes you an easy target for hackers, yet having an account with two factor authentication targets yourself if you're not careful. I will choose the latter because I will make sure I put my recovery key somewhere safe. On 9 Dec 2014, at 20:10, M. Taylor mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. Mark The dark side of Apple's two-factor authentication Earlier this week, a strange message popped up on my Mac that I thought nothing of. You can't sign in because your account was disabled for security reasons. I dismissed it in my tired haze, thinking it would solve itself and went to sleep. The next morning, I didn't have time to deal with the message - which was now popping up every half hour - for a few hours until it became annoying. I figured I'd done something dumb and broken iCloud, but that it could wait. I'd turned two-factor on my Apple ID in haste when I read Mat Honan's harrowing story about how his Mac, iPhone and other devices were wiped when someone broke into his iCloud account. That terrified me into thinking about real security for the first time. When I finally had time to investigate the errors appearing on my machine, I discovered that not only had my iCloud account been locked, but someone had tried to break in. Two-factor had done its job and kept the attacker out, however, it had also inadvertently locked me out. The Apple support page relating to lockouts assured me it would be easy to recover my account with a combination of any two of either my password, a trusted device or the two-factor recovery key. When I headed to the account recovery service, dubbed iForgot, I discovered that there was no way back in without my recovery key. That's when it hit me; I had no idea where my recovery key was or if I'd ever even put the piece of paper in a safe place. I've moved since I set up two-factor on iCloud. I began nervously scouring the entire house for the code, before giving up after a few frustrating hours and began searching my computer for any trace of it. I found countless recovery keys but they weren't for the right things; for my Mac's hard-drive encryption, Twitter, Facebook and other accounts, but not for my Apple ID. How could I be foolish enough to misplace my Apple ID recovery key? I swore that I'd taken a screenshot, printed it and had taken a photo of it with my iPhone for extra safekeeping. This is when it began to sink in that this single ID held the keys to much of my digital life; everything from iTunes purchases going back seven years, app purchases and even the ability to get my iPhone out of the grips of Find my iPhone's lock. The sinking feeling began. After fruitlessly searching and a lot of cussing, I decided to call Apple. I figured that something must be wrong, since the support page claims you can use trusted devices to recover your ID in cases like this. The first person I spoke to told me immediately after getting on the phone that in no uncertain terms I had forfeit my Apple ID by losing the recovery key. He refused to help me. I hung up and called back. On the second call, I got a lovely woman who totally understood my plight and how terrible it was. She told me a similar thing had happened to her, and it had turned out OK. After 20 minutes of poking around and lots of awkward sighing, she put me on hold to talk to a senior manager. When she got back on the line, the story was just as bleak. We take your security very seriously at Apple she told me but at this time we cannot grant you access back into your Apple account. We recommend you create a new Apple ID. I couldn't believe what I was hearing and fought back that surely there was some other way, but I was told point blank that Apple would not help me. I offered a scan of my government ID, my trusted devices and other proof that it was me. Nope, that won't do for Apple in this situation. She apologized profusely and said there was nothing more should do. Furious about the situation, I took to Twitter in a fit of rage, complaining that Apple couldn't help me out of a dumb situation, in which I could easily prove who I was. It was frustrating enough that when setting up my Apple ID, the company assured me I could recover the account with a trusted device. I know it was stupid that I'd lost the recovery key but I'd set it up so long ago I couldn't remember where it would conceivably be. There's only so many things I can keep track of. Besides, I figured I'd be able to use trusted device to get out of a mess like this. I'd looked almost everywhere twice by
Re: The dark side of Apple's two-factor authentication
Hi, Mark and all, The other day I erased and restored my iPod. I'd lost my recovery key. I installed Google Voice and had a code sent to that phone number, which was already established as one of my trusted devices. I reset my recovery key this way. Needless to say, I'm going to Braille it and put it somewhere safe, in case someone tries too many times to log in (most likely me) and I get locked out. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 12:10 PM, M. Taylor mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout.
Re: The dark side of Apple's two-factor authentication
How can you set up to factor authentication for an existing Apple ID? I don't believe I have the set up… Hope Paulos On Dec 9, 2014, at 3:33 PM, Teresa Cochran batsfly...@me.com wrote: Hi, Mark and all, The other day I erased and restored my iPod. I'd lost my recovery key. I installed Google Voice and had a code sent to that phone number, which was already established as one of my trusted devices. I reset my recovery key this way. Needless to say, I'm going to Braille it and put it somewhere safe, in case someone tries too many times to log in (most likely me) and I get locked out. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 12:10 PM, M. Taylor mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout.
Re: The dark side of Apple's two-factor authentication
Hi, very interesting situation. I have no recollection of being asked to print my key. I may have though and just forgotten. Is it possible to re-print the key now? If it is could anybody give me some pointers? Thanks for any advice. Max On 10 Dec 2014, at 7:10 am, M. Taylor mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. Mark The dark side of Apple's two-factor authentication Earlier this week, a strange message popped up on my Mac that I thought nothing of. You can't sign in because your account was disabled for security reasons. I dismissed it in my tired haze, thinking it would solve itself and went to sleep. The next morning, I didn't have time to deal with the message - which was now popping up every half hour - for a few hours until it became annoying. I figured I'd done something dumb and broken iCloud, but that it could wait. I'd turned two-factor on my Apple ID in haste when I read Mat Honan's harrowing story about how his Mac, iPhone and other devices were wiped when someone broke into his iCloud account. That terrified me into thinking about real security for the first time. When I finally had time to investigate the errors appearing on my machine, I discovered that not only had my iCloud account been locked, but someone had tried to break in. Two-factor had done its job and kept the attacker out, however, it had also inadvertently locked me out. The Apple support page relating to lockouts assured me it would be easy to recover my account with a combination of any two of either my password, a trusted device or the two-factor recovery key. When I headed to the account recovery service, dubbed iForgot, I discovered that there was no way back in without my recovery key. That's when it hit me; I had no idea where my recovery key was or if I'd ever even put the piece of paper in a safe place. I've moved since I set up two-factor on iCloud. I began nervously scouring the entire house for the code, before giving up after a few frustrating hours and began searching my computer for any trace of it. I found countless recovery keys but they weren't for the right things; for my Mac's hard-drive encryption, Twitter, Facebook and other accounts, but not for my Apple ID. How could I be foolish enough to misplace my Apple ID recovery key? I swore that I'd taken a screenshot, printed it and had taken a photo of it with my iPhone for extra safekeeping. This is when it began to sink in that this single ID held the keys to much of my digital life; everything from iTunes purchases going back seven years, app purchases and even the ability to get my iPhone out of the grips of Find my iPhone's lock. The sinking feeling began. After fruitlessly searching and a lot of cussing, I decided to call Apple. I figured that something must be wrong, since the support page claims you can use trusted devices to recover your ID in cases like this. The first person I spoke to told me immediately after getting on the phone that in no uncertain terms I had forfeit my Apple ID by losing the recovery key. He refused to help me. I hung up and called back. On the second call, I got a lovely woman who totally understood my plight and how terrible it was. She told me a similar thing had happened to her, and it had turned out OK. After 20 minutes of poking around and lots of awkward sighing, she put me on hold to talk to a senior manager. When she got back on the line, the story was just as bleak. We take your security very seriously at Apple she told me but at this time we cannot grant you access back into your Apple account. We recommend you create a new Apple ID. I couldn't believe what I was hearing and fought back that surely there was some other way, but I was told point blank that Apple would not help me. I offered a scan of my government ID, my trusted devices and other proof that it was me. Nope, that won't do for Apple in this situation. She apologized profusely and said there was nothing more should do. Furious about the situation, I took to Twitter in a fit of rage, complaining that Apple couldn't help me out of a dumb situation, in which I could easily prove who I was. It was frustrating enough that when setting up my Apple ID, the company assured me I could recover the account with a trusted device. I know it was stupid that I'd lost the recovery key but I'd set it up so long ago I couldn't remember where it would conceivably be. There's only so many things I can keep track of. Besides, I figured I'd be able to use trusted device to get out of a mess like this. I'd looked almost everywhere twice by this point. Who remembers stuff like this? Apple's two factor signup process tries to point out the importance of the key when you set it up. You have to print the key, then
Re: The dark side of Apple's two-factor authentication
Go to http://appleid.apple.com click manage my Apple ID, sign in and it's in the passwords and security tab. On 9 Dec 2014, at 20:40, Hope Paulos hope.pau...@gmail.com wrote: How can you set up to factor authentication for an existing Apple ID? I don't believe I have the set up… Hope Paulos On Dec 9, 2014, at 3:33 PM, Teresa Cochran batsfly...@me.com mailto:batsfly...@me.com wrote: Hi, Mark and all, The other day I erased and restored my iPod. I'd lost my recovery key. I installed Google Voice and had a code sent to that phone number, which was already established as one of my trusted devices. I reset my recovery key this way. Needless to say, I'm going to Braille it and put it somewhere safe, in case someone tries too many times to log in (most likely me) and I get locked out. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 12:10 PM, M. Taylor mk...@ucla.edu mailto:mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/ http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com mailto:viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com mailto:viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/ http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com mailto:viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com mailto:viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout.
Re: The dark side of Apple's two-factor authentication
Where does the app Authy fit into all this? Is it easier to remember the recovery key with this app? /Krister 9 dec 2014 kl. 21:40 skrev Hope Paulos hope.pau...@gmail.com: How can you set up to factor authentication for an existing Apple ID? I don't believe I have the set up… Hope Paulos On Dec 9, 2014, at 3:33 PM, Teresa Cochran batsfly...@me.com mailto:batsfly...@me.com wrote: Hi, Mark and all, The other day I erased and restored my iPod. I'd lost my recovery key. I installed Google Voice and had a code sent to that phone number, which was already established as one of my trusted devices. I reset my recovery key this way. Needless to say, I'm going to Braille it and put it somewhere safe, in case someone tries too many times to log in (most likely me) and I get locked out. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 12:10 PM, M. Taylor mk...@ucla.edu mailto:mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/ http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com mailto:viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com mailto:viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/ http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com mailto:viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com mailto:viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. signature.asc Description: Message signed with OpenPGP using GPGMail
Re: The dark side of Apple's two-factor authentication
This is an interesting article. To use this authentication you needed to have set it up using the two step process. When this is done you no longer have to answer security questions. I don't know about others but I'd rather use the security questions since I won't potentially lose them whereas I may lose the key. On 12/9/14, Krister Ekstrom kris...@kristersplace.com wrote: Where does the app Authy fit into all this? Is it easier to remember the recovery key with this app? /Krister 9 dec 2014 kl. 21:40 skrev Hope Paulos hope.pau...@gmail.com: How can you set up to factor authentication for an existing Apple ID? I don't believe I have the set up... Hope Paulos On Dec 9, 2014, at 3:33 PM, Teresa Cochran batsfly...@me.com mailto:batsfly...@me.com wrote: Hi, Mark and all, The other day I erased and restored my iPod. I'd lost my recovery key. I installed Google Voice and had a code sent to that phone number, which was already established as one of my trusted devices. I reset my recovery key this way. Needless to say, I'm going to Braille it and put it somewhere safe, in case someone tries too many times to log in (most likely me) and I get locked out. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 12:10 PM, M. Taylor mk...@ucla.edu mailto:mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/ http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com mailto:viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com mailto:viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/ http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com mailto:viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com mailto:viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at
Re: The dark side of Apple's two-factor authentication
Question: do you only get one of these keys when you opt for 2 factor logging? I've not seen, had, or have heard of these keys before now. RobH. - Original Message - From: Teresa Cochran batsfly...@me.com To: viphone@googlegroups.com Sent: Tuesday, December 09, 2014 8:33 PM Subject: Re: The dark side of Apple's two-factor authentication Hi, Mark and all, The other day I erased and restored my iPod. I'd lost my recovery key. I installed Google Voice and had a code sent to that phone number, which was already established as one of my trusted devices. I reset my recovery key this way. Needless to say, I'm going to Braille it and put it somewhere safe, in case someone tries too many times to log in (most likely me) and I get locked out. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 12:10 PM, M. Taylor mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout.
Re: The dark side of Apple's two-factor authentication
Well this is more me, though nearly forgot the answers to those two, once. - Original Message - From: John Diakogeorgiou jdiakoge2...@gmail.com To: viphone@googlegroups.com Sent: Tuesday, December 09, 2014 9:11 PM Subject: Re: The dark side of Apple's two-factor authentication This is an interesting article. To use this authentication you needed to have set it up using the two step process. When this is done you no longer have to answer security questions. I don't know about others but I'd rather use the security questions since I won't potentially lose them whereas I may lose the key. On 12/9/14, Krister Ekstrom kris...@kristersplace.com wrote: Where does the app Authy fit into all this? Is it easier to remember the recovery key with this app? /Krister 9 dec 2014 kl. 21:40 skrev Hope Paulos hope.pau...@gmail.com: How can you set up to factor authentication for an existing Apple ID? I don't believe I have the set up... Hope Paulos On Dec 9, 2014, at 3:33 PM, Teresa Cochran batsfly...@me.com mailto:batsfly...@me.com wrote: Hi, Mark and all, The other day I erased and restored my iPod. I'd lost my recovery key. I installed Google Voice and had a code sent to that phone number, which was already established as one of my trusted devices. I reset my recovery key this way. Needless to say, I'm going to Braille it and put it somewhere safe, in case someone tries too many times to log in (most likely me) and I get locked out. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 12:10 PM, M. Taylor mk...@ucla.edu mailto:mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/ http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com mailto:viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com mailto:viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/ http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com mailto:viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com mailto:viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members
Re: The dark side of Apple's two-factor authentication
Ok, so this recovery key--you only get one if you set up 2-layered encription? How do you do this, and is this key a set of numbers and letters? Does VO read it? Paul -Original Message- From: M. Taylor Sent: Tuesday, December 09, 2014 3:10 PM To: viphone@googlegroups.com Subject: The dark side of Apple's two-factor authentication Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. Mark The dark side of Apple's two-factor authentication Earlier this week, a strange message popped up on my Mac that I thought nothing of. You can't sign in because your account was disabled for security reasons. I dismissed it in my tired haze, thinking it would solve itself and went to sleep. The next morning, I didn't have time to deal with the message - which was now popping up every half hour - for a few hours until it became annoying. I figured I'd done something dumb and broken iCloud, but that it could wait. I'd turned two-factor on my Apple ID in haste when I read Mat Honan's harrowing story about how his Mac, iPhone and other devices were wiped when someone broke into his iCloud account. That terrified me into thinking about real security for the first time. When I finally had time to investigate the errors appearing on my machine, I discovered that not only had my iCloud account been locked, but someone had tried to break in. Two-factor had done its job and kept the attacker out, however, it had also inadvertently locked me out. The Apple support page relating to lockouts assured me it would be easy to recover my account with a combination of any two of either my password, a trusted device or the two-factor recovery key. When I headed to the account recovery service, dubbed iForgot, I discovered that there was no way back in without my recovery key. That's when it hit me; I had no idea where my recovery key was or if I'd ever even put the piece of paper in a safe place. I've moved since I set up two-factor on iCloud. I began nervously scouring the entire house for the code, before giving up after a few frustrating hours and began searching my computer for any trace of it. I found countless recovery keys but they weren't for the right things; for my Mac's hard-drive encryption, Twitter, Facebook and other accounts, but not for my Apple ID. How could I be foolish enough to misplace my Apple ID recovery key? I swore that I'd taken a screenshot, printed it and had taken a photo of it with my iPhone for extra safekeeping. This is when it began to sink in that this single ID held the keys to much of my digital life; everything from iTunes purchases going back seven years, app purchases and even the ability to get my iPhone out of the grips of Find my iPhone's lock. The sinking feeling began. After fruitlessly searching and a lot of cussing, I decided to call Apple. I figured that something must be wrong, since the support page claims you can use trusted devices to recover your ID in cases like this. The first person I spoke to told me immediately after getting on the phone that in no uncertain terms I had forfeit my Apple ID by losing the recovery key. He refused to help me. I hung up and called back. On the second call, I got a lovely woman who totally understood my plight and how terrible it was. She told me a similar thing had happened to her, and it had turned out OK. After 20 minutes of poking around and lots of awkward sighing, she put me on hold to talk to a senior manager. When she got back on the line, the story was just as bleak. We take your security very seriously at Apple she told me but at this time we cannot grant you access back into your Apple account. We recommend you create a new Apple ID. I couldn't believe what I was hearing and fought back that surely there was some other way, but I was told point blank that Apple would not help me. I offered a scan of my government ID, my trusted devices and other proof that it was me. Nope, that won't do for Apple in this situation. She apologized profusely and said there was nothing more should do. Furious about the situation, I took to Twitter in a fit of rage, complaining that Apple couldn't help me out of a dumb situation, in which I could easily prove who I was. It was frustrating enough that when setting up my Apple ID, the company assured me I could recover the account with a trusted device. I know it was stupid that I'd lost the recovery key but I'd set it up so long ago I couldn't remember where it would conceivably be. There's only so many things I can keep track of. Besides, I figured I'd be able to use trusted device to get out of a mess like this. I'd looked almost everywhere twice by this point. Who remembers stuff like this? Apple's two factor signup process tries to point out the importance of the key when you set it up. You have to print the key, then re-enter it to show that you've got it. I don't think this
Re: The dark side of Apple's two-factor authentication
You can reset your key anytime, but Apple doesn't keep it for you. In order to reset your key, you have to have access to a trusted text-receiving phone number and your iCloud passcond. You have to have any two of these to set a third, and apparently, if you're locked out of your account for any reason, you have to have your key. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 1:40 PM, RobH. bobs...@googlemail.com wrote: Question: do you only get one of these keys when you opt for 2 factor logging? I've not seen, had, or have heard of these keys before now. RobH. - Original Message - From: Teresa Cochran batsfly...@me.com To: viphone@googlegroups.com Sent: Tuesday, December 09, 2014 8:33 PM Subject: Re: The dark side of Apple's two-factor authentication Hi, Mark and all, The other day I erased and restored my iPod. I'd lost my recovery key. I installed Google Voice and had a code sent to that phone number, which was already established as one of my trusted devices. I reset my recovery key this way. Needless to say, I'm going to Braille it and put it somewhere safe, in case someone tries too many times to log in (most likely me) and I get locked out. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 12:10 PM, M. Taylor mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout.
Re: The dark side of Apple's two-factor authentication
When I got my recovery key, I copied it onto my Braille Lite and onto an old-fashioned piece of paper in Braille. I put the piece of paper with my notes in my backpack. I also thought of taping another paper copy on the underside of my computer desk, but don't know if I'll do that or not. You can reset your key, but you must have your iCloud passcode and a trusted texting device in order to do it, and you can't be officially locked out of your account to reset your key. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 1:51 PM, Paul Ferrara paul.ferr...@twc.com wrote: Ok, so this recovery key--you only get one if you set up 2-layered encription? How do you do this, and is this key a set of numbers and letters? Does VO read it? Paul -Original Message- From: M. Taylor Sent: Tuesday, December 09, 2014 3:10 PM To: viphone@googlegroups.com Subject: The dark side of Apple's two-factor authentication Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. Mark The dark side of Apple's two-factor authentication Earlier this week, a strange message popped up on my Mac that I thought nothing of. You can't sign in because your account was disabled for security reasons. I dismissed it in my tired haze, thinking it would solve itself and went to sleep. The next morning, I didn't have time to deal with the message - which was now popping up every half hour - for a few hours until it became annoying. I figured I'd done something dumb and broken iCloud, but that it could wait. I'd turned two-factor on my Apple ID in haste when I read Mat Honan's harrowing story about how his Mac, iPhone and other devices were wiped when someone broke into his iCloud account. That terrified me into thinking about real security for the first time. When I finally had time to investigate the errors appearing on my machine, I discovered that not only had my iCloud account been locked, but someone had tried to break in. Two-factor had done its job and kept the attacker out, however, it had also inadvertently locked me out. The Apple support page relating to lockouts assured me it would be easy to recover my account with a combination of any two of either my password, a trusted device or the two-factor recovery key. When I headed to the account recovery service, dubbed iForgot, I discovered that there was no way back in without my recovery key. That's when it hit me; I had no idea where my recovery key was or if I'd ever even put the piece of paper in a safe place. I've moved since I set up two-factor on iCloud. I began nervously scouring the entire house for the code, before giving up after a few frustrating hours and began searching my computer for any trace of it. I found countless recovery keys but they weren't for the right things; for my Mac's hard-drive encryption, Twitter, Facebook and other accounts, but not for my Apple ID. How could I be foolish enough to misplace my Apple ID recovery key? I swore that I'd taken a screenshot, printed it and had taken a photo of it with my iPhone for extra safekeeping. This is when it began to sink in that this single ID held the keys to much of my digital life; everything from iTunes purchases going back seven years, app purchases and even the ability to get my iPhone out of the grips of Find my iPhone's lock. The sinking feeling began. After fruitlessly searching and a lot of cussing, I decided to call Apple. I figured that something must be wrong, since the support page claims you can use trusted devices to recover your ID in cases like this. The first person I spoke to told me immediately after getting on the phone that in no uncertain terms I had forfeit my Apple ID by losing the recovery key. He refused to help me. I hung up and called back. On the second call, I got a lovely woman who totally understood my plight and how terrible it was. She told me a similar thing had happened to her, and it had turned out OK. After 20 minutes of poking around and lots of awkward sighing, she put me on hold to talk to a senior manager. When she got back on the line, the story was just as bleak. We take your security very seriously at Apple she told me but at this time we cannot grant you access back into your Apple account. We recommend you create a new Apple ID. I couldn't believe what I was hearing and fought back that surely there was some other way, but I was told point blank that Apple would not help me. I offered a scan of my government ID, my trusted devices and other proof that it was me. Nope, that won't do for Apple in this situation. She apologized profusely and said there was nothing more should do. Furious about the situation, I took to Twitter in a fit of rage,
Re: The dark side of Apple's two-factor authentication
It's been quite a while now since I signed up and I don't recall a recovery key as such at all. I certainly know I didn't take any photo. Can anyone explain the history and whether in fact my account has such a key. I'm so confused about these things. They move on faster than I can so hope someone can help me to understand this one a little better. It sounds all very scary. I've had enough problems with Twitter hackers and really don't want problems now with my Apple account. Hope someone can go through things now from the beginning. I first had an ipod in early 2011. I remember some time afterwards having to answer questions to get back into one's account, but certainly have no knowledge of any picture key! Carol P - Who really thinks she's getting too old to move with this lot, but loves it too much not to do so! - Original Message - From: christopher hallsworth challswor...@icloud.com To: Viphone viphone@googlegroups.com Sent: Tuesday, December 09, 2014 8:26 PM Subject: Re: The dark side of Apple's two-factor authentication Thanks for sharing. I did read somewhere that you must use a recovery key to unlock a locked account. This is probably overlooked though. You just can't win. An Apple ID without two factor authentication makes you an easy target for hackers, yet having an account with two factor authentication targets yourself if you're not careful. I will choose the latter because I will make sure I put my recovery key somewhere safe. On 9 Dec 2014, at 20:10, M. Taylor mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. Mark The dark side of Apple's two-factor authentication Earlier this week, a strange message popped up on my Mac that I thought nothing of. You can't sign in because your account was disabled for security reasons. I dismissed it in my tired haze, thinking it would solve itself and went to sleep. The next morning, I didn't have time to deal with the message - which was now popping up every half hour - for a few hours until it became annoying. I figured I'd done something dumb and broken iCloud, but that it could wait. I'd turned two-factor on my Apple ID in haste when I read Mat Honan's harrowing story about how his Mac, iPhone and other devices were wiped when someone broke into his iCloud account. That terrified me into thinking about real security for the first time. When I finally had time to investigate the errors appearing on my machine, I discovered that not only had my iCloud account been locked, but someone had tried to break in. Two-factor had done its job and kept the attacker out, however, it had also inadvertently locked me out. The Apple support page relating to lockouts assured me it would be easy to recover my account with a combination of any two of either my password, a trusted device or the two-factor recovery key. When I headed to the account recovery service, dubbed iForgot, I discovered that there was no way back in without my recovery key. That's when it hit me; I had no idea where my recovery key was or if I'd ever even put the piece of paper in a safe place. I've moved since I set up two-factor on iCloud. I began nervously scouring the entire house for the code, before giving up after a few frustrating hours and began searching my computer for any trace of it. I found countless recovery keys but they weren't for the right things; for my Mac's hard-drive encryption, Twitter, Facebook and other accounts, but not for my Apple ID. How could I be foolish enough to misplace my Apple ID recovery key? I swore that I'd taken a screenshot, printed it and had taken a photo of it with my iPhone for extra safekeeping. This is when it began to sink in that this single ID held the keys to much of my digital life; everything from iTunes purchases going back seven years, app purchases and even the ability to get my iPhone out of the grips of Find my iPhone's lock. The sinking feeling began. After fruitlessly searching and a lot of cussing, I decided to call Apple. I figured that something must be wrong, since the support page claims you can use trusted devices to recover your ID in cases like this. The first person I spoke to told me immediately after getting on the phone that in no uncertain terms I had forfeit my Apple ID by losing the recovery key. He refused to help me. I hung up and called back. On the second call, I got a lovely woman who totally understood my plight and how terrible it was. She told me a similar thing had happened to her, and it had turned out OK. After 20 minutes of poking around and lots of awkward sighing, she put me on hold to talk to a senior manager. When she got back on the line, the story was just as bleak. We take your security very seriously at Apple she told me but at this time we cannot grant you access back into your Apple account. We
Re: The dark side of Apple's two-factor authentication
Theresa, Please help me to understand this. So does the recovery key consist of letters and numbers, so you can read it and copy it down, as you did, in Braille, without having to take a picture? I never trust myself taking pictures! What's the idea of the recovery key? Is it just an extra layer of protection, or at least is that what it's supposed to be? Carol P - Original Message - From: Teresa Cochran To: viphone@googlegroups.com Sent: Tuesday, December 09, 2014 10:09 PM Subject: Re: The dark side of Apple's two-factor authentication When I got my recovery key, I copied it onto my Braille Lite and onto an old-fashioned piece of paper in Braille. I put the piece of paper with my notes in my backpack. I also thought of taping another paper copy on the underside of my computer desk, but don't know if I'll do that or not. You can reset your key, but you must have your iCloud passcode and a trusted texting device in order to do it, and you can't be officially locked out of your account to reset your key. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 1:51 PM, Paul Ferrara paul.ferr...@twc.com wrote: Ok, so this recovery key--you only get one if you set up 2-layered encription? How do you do this, and is this key a set of numbers and letters? Does VO read it? Paul -Original Message- From: M. Taylor Sent: Tuesday, December 09, 2014 3:10 PM To: viphone@googlegroups.com Subject: The dark side of Apple's two-factor authentication Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. Mark The dark side of Apple's two-factor authentication Earlier this week, a strange message popped up on my Mac that I thought nothing of. You can't sign in because your account was disabled for security reasons. I dismissed it in my tired haze, thinking it would solve itself and went to sleep. The next morning, I didn't have time to deal with the message - which was now popping up every half hour - for a few hours until it became annoying. I figured I'd done something dumb and broken iCloud, but that it could wait. I'd turned two-factor on my Apple ID in haste when I read Mat Honan's harrowing story about how his Mac, iPhone and other devices were wiped when someone broke into his iCloud account. That terrified me into thinking about real security for the first time. When I finally had time to investigate the errors appearing on my machine, I discovered that not only had my iCloud account been locked, but someone had tried to break in. Two-factor had done its job and kept the attacker out, however, it had also inadvertently locked me out. The Apple support page relating to lockouts assured me it would be easy to recover my account with a combination of any two of either my password, a trusted device or the two-factor recovery key. When I headed to the account recovery service, dubbed iForgot, I discovered that there was no way back in without my recovery key. That's when it hit me; I had no idea where my recovery key was or if I'd ever even put the piece of paper in a safe place. I've moved since I set up two-factor on iCloud. I began nervously scouring the entire house for the code, before giving up after a few frustrating hours and began searching my computer for any trace of it. I found countless recovery keys but they weren't for the right things; for my Mac's hard-drive encryption, Twitter, Facebook and other accounts, but not for my Apple ID. How could I be foolish enough to misplace my Apple ID recovery key? I swore that I'd taken a screenshot, printed it and had taken a photo of it with my iPhone for extra safekeeping. This is when it began to sink in that this single ID held the keys to much of my digital life; everything from iTunes purchases going back seven years, app purchases and even the ability to get my iPhone out of the grips of Find my iPhone's lock. The sinking feeling began. After fruitlessly searching and a lot of cussing, I decided to call Apple. I figured that something must be wrong, since the support page claims you can use trusted devices to recover your ID in cases like this. The first person I spoke to told me immediately after getting on the phone that in no uncertain terms I had forfeit my Apple ID by losing the recovery key. He refused to help me. I hung up and called back. On the second call, I got a lovely woman who totally understood my plight and how terrible it was. She told me a similar thing had happened to her, and it had turned out OK. After 20 minutes of poking around
Re: The dark side of Apple's two-factor authentication
I don't agree withthis as the Darkside of apple's 2 step authentication for your safety. If people cannot be responsible to keep their security unlock key in a safe place then that is not apple's fault. I have the service enabled and I have all my safe recovery keys in an area that I can get to from either my iPhone or my computer or my iPad. I would have to experience a complete shutdown and lack of access from my Windows machine as well as my Apple devices in order for me to not have access to that key. I understand there can be some annoyance with too much security, however anytime extra security measures are added the companies that are offering the services are very clear about you needing to keep any sort of recovery keys available to you at all times. On Dec 9, 2014, at 2:10 PM, M. Taylor mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. Mark The dark side of Apple's two-factor authentication Earlier this week, a strange message popped up on my Mac that I thought nothing of. You can't sign in because your account was disabled for security reasons. I dismissed it in my tired haze, thinking it would solve itself and went to sleep. The next morning, I didn't have time to deal with the message - which was now popping up every half hour - for a few hours until it became annoying. I figured I'd done something dumb and broken iCloud, but that it could wait. I'd turned two-factor on my Apple ID in haste when I read Mat Honan's harrowing story about how his Mac, iPhone and other devices were wiped when someone broke into his iCloud account. That terrified me into thinking about real security for the first time. When I finally had time to investigate the errors appearing on my machine, I discovered that not only had my iCloud account been locked, but someone had tried to break in. Two-factor had done its job and kept the attacker out, however, it had also inadvertently locked me out. The Apple support page relating to lockouts assured me it would be easy to recover my account with a combination of any two of either my password, a trusted device or the two-factor recovery key. When I headed to the account recovery service, dubbed iForgot, I discovered that there was no way back in without my recovery key. That's when it hit me; I had no idea where my recovery key was or if I'd ever even put the piece of paper in a safe place. I've moved since I set up two-factor on iCloud. I began nervously scouring the entire house for the code, before giving up after a few frustrating hours and began searching my computer for any trace of it. I found countless recovery keys but they weren't for the right things; for my Mac's hard-drive encryption, Twitter, Facebook and other accounts, but not for my Apple ID. How could I be foolish enough to misplace my Apple ID recovery key? I swore that I'd taken a screenshot, printed it and had taken a photo of it with my iPhone for extra safekeeping. This is when it began to sink in that this single ID held the keys to much of my digital life; everything from iTunes purchases going back seven years, app purchases and even the ability to get my iPhone out of the grips of Find my iPhone's lock. The sinking feeling began. After fruitlessly searching and a lot of cussing, I decided to call Apple. I figured that something must be wrong, since the support page claims you can use trusted devices to recover your ID in cases like this. The first person I spoke to told me immediately after getting on the phone that in no uncertain terms I had forfeit my Apple ID by losing the recovery key. He refused to help me. I hung up and called back. On the second call, I got a lovely woman who totally understood my plight and how terrible it was. She told me a similar thing had happened to her, and it had turned out OK. After 20 minutes of poking around and lots of awkward sighing, she put me on hold to talk to a senior manager. When she got back on the line, the story was just as bleak. We take your security very seriously at Apple she told me but at this time we cannot grant you access back into your Apple account. We recommend you create a new Apple ID. I couldn't believe what I was hearing and fought back that surely there was some other way, but I was told point blank that Apple would not help me. I offered a scan of my government ID, my trusted devices and other proof that it was me. Nope, that won't do for Apple in this situation. She apologized profusely and said there was nothing more should do. Furious about the situation, I took to Twitter in a fit of rage, complaining that Apple couldn't help me out of a dumb situation, in which I could easily prove who I was. It was frustrating enough that when setting up my Apple ID, the company assured me I could
Re: The dark side of Apple's two-factor authentication
I'm glad someone has made this point. If you lose the security key, it's your fault. If you are going to enable any kind of feature, you should know what the risks and benefits are. It's no different than enabling FileVault 2 on a Mac. A security key is also generated and it's your responsibility not to lose that key should it ever be needed. It's not Apple's fault if you do so. They give plenty of warnings in the documentation and I find it perplexing that someone would then turn around and make such a big deal out of something that comes down to being their fault. My FileVault 2 key is safely stored in two places in case it should ever be needed as with any important data of that kind. Take Care John D. Panarese Director Mac for the Blind Tel, (631) 724-4479 Email, j...@macfortheblind.com Website, http://www.macfortheblind.com APPLE CERTIFIED SUPPORT PROFESSIONAL FOR MAC OSX 10.7 LION and 10.8 Mountain Lion AUTHORIZED APPLE STORE BUSINESS AFFILIATE MAC and iOS VOICEOVER TRAINING AND SUPPORT On Dec 9, 2014, at 6:36 PM, Raul A. Gallegos r...@raulgallegos.com wrote: I don't agree withthis as the Darkside of apple's 2 step authentication for your safety. If people cannot be responsible to keep their security unlock key in a safe place then that is not apple's fault. I have the service enabled and I have all my safe recovery keys in an area that I can get to from either my iPhone or my computer or my iPad. I would have to experience a complete shutdown and lack of access from my Windows machine as well as my Apple devices in order for me to not have access to that key. I understand there can be some annoyance with too much security, however anytime extra security measures are added the companies that are offering the services are very clear about you needing to keep any sort of recovery keys available to you at all times. On Dec 9, 2014, at 2:10 PM, M. Taylor mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. Mark The dark side of Apple's two-factor authentication Earlier this week, a strange message popped up on my Mac that I thought nothing of. You can't sign in because your account was disabled for security reasons. I dismissed it in my tired haze, thinking it would solve itself and went to sleep. The next morning, I didn't have time to deal with the message - which was now popping up every half hour - for a few hours until it became annoying. I figured I'd done something dumb and broken iCloud, but that it could wait. I'd turned two-factor on my Apple ID in haste when I read Mat Honan's harrowing story about how his Mac, iPhone and other devices were wiped when someone broke into his iCloud account. That terrified me into thinking about real security for the first time. When I finally had time to investigate the errors appearing on my machine, I discovered that not only had my iCloud account been locked, but someone had tried to break in. Two-factor had done its job and kept the attacker out, however, it had also inadvertently locked me out. The Apple support page relating to lockouts assured me it would be easy to recover my account with a combination of any two of either my password, a trusted device or the two-factor recovery key. When I headed to the account recovery service, dubbed iForgot, I discovered that there was no way back in without my recovery key. That's when it hit me; I had no idea where my recovery key was or if I'd ever even put the piece of paper in a safe place. I've moved since I set up two-factor on iCloud. I began nervously scouring the entire house for the code, before giving up after a few frustrating hours and began searching my computer for any trace of it. I found countless recovery keys but they weren't for the right things; for my Mac's hard-drive encryption, Twitter, Facebook and other accounts, but not for my Apple ID. How could I be foolish enough to misplace my Apple ID recovery key? I swore that I'd taken a screenshot, printed it and had taken a photo of it with my iPhone for extra safekeeping. This is when it began to sink in that this single ID held the keys to much of my digital life; everything from iTunes purchases going back seven years, app purchases and even the ability to get my iPhone out of the grips of Find my iPhone's lock. The sinking feeling began. After fruitlessly searching and a lot of cussing, I decided to call Apple. I figured that something must be wrong, since the support page claims you can use trusted devices to recover your ID in cases like this. The first person I spoke to told me immediately after getting on the phone that in no uncertain terms I had forfeit my Apple ID by losing the recovery key. He refused to help me. I hung up and called back. On the second call, I got a
Re: The dark side of Apple's two-factor authentication
Hi, thank you for giving voice to that which I was thinking. I was just about to post and say while others suggest duplicating it on pen or USB drives here's one instance where braille is my friend. I have a notebook which contains all account numbers in my world in case more advanced technological devices fail. Braille is my friend. Sometimes a written word really is worth more than a picture as opposed to the old adage of a picture being worth a thousand words (smile). Robin From: Teresa Cochran Sent: Tuesday, December 09, 2014 3:33 PM To: viphone@googlegroups.com Subject: Re: The dark side of Apple's two-factor authentication Hi, Mark and all, The other day I erased and restored my iPod. I'd lost my recovery key. I installed Google Voice and had a code sent to that phone number, which was already established as one of my trusted devices. I reset my recovery key this way. Needless to say, I'm going to Braille it and put it somewhere safe, in case someone tries too many times to log in (most likely me) and I get locked out. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 12:10 PM, M. Taylor mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout.
Re: The dark side of Apple's two-factor authentication
I generally agree with the philosophy here. It's like having a clicker for your car or your housekeys. You really don't want to get caught without your house key. I noticed a news story yesterday about decreased iPhone theft with Touch ID and two-step verification in place. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 3:41 PM, John Panarese jpanar...@gmail.com wrote: I'm glad someone has made this point. If you lose the security key, it's your fault. If you are going to enable any kind of feature, you should know what the risks and benefits are. It's no different than enabling FileVault 2 on a Mac. A security key is also generated and it's your responsibility not to lose that key should it ever be needed. It's not Apple's fault if you do so. They give plenty of warnings in the documentation and I find it perplexing that someone would then turn around and make such a big deal out of something that comes down to being their fault. My FileVault 2 key is safely stored in two places in case it should ever be needed as with any important data of that kind. Take Care John D. Panarese Director Mac for the Blind Tel, (631) 724-4479 Email, j...@macfortheblind.com Website, http://www.macfortheblind.com APPLE CERTIFIED SUPPORT PROFESSIONAL FOR MAC OSX 10.7 LION and 10.8 Mountain Lion AUTHORIZED APPLE STORE BUSINESS AFFILIATE MAC and iOS VOICEOVER TRAINING AND SUPPORT On Dec 9, 2014, at 6:36 PM, Raul A. Gallegos r...@raulgallegos.com wrote: I don't agree withthis as the Darkside of apple's 2 step authentication for your safety. If people cannot be responsible to keep their security unlock key in a safe place then that is not apple's fault. I have the service enabled and I have all my safe recovery keys in an area that I can get to from either my iPhone or my computer or my iPad. I would have to experience a complete shutdown and lack of access from my Windows machine as well as my Apple devices in order for me to not have access to that key. I understand there can be some annoyance with too much security, however anytime extra security measures are added the companies that are offering the services are very clear about you needing to keep any sort of recovery keys available to you at all times. On Dec 9, 2014, at 2:10 PM, M. Taylor mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. Mark The dark side of Apple's two-factor authentication Earlier this week, a strange message popped up on my Mac that I thought nothing of. You can't sign in because your account was disabled for security reasons. I dismissed it in my tired haze, thinking it would solve itself and went to sleep. The next morning, I didn't have time to deal with the message - which was now popping up every half hour - for a few hours until it became annoying. I figured I'd done something dumb and broken iCloud, but that it could wait. I'd turned two-factor on my Apple ID in haste when I read Mat Honan's harrowing story about how his Mac, iPhone and other devices were wiped when someone broke into his iCloud account. That terrified me into thinking about real security for the first time. When I finally had time to investigate the errors appearing on my machine, I discovered that not only had my iCloud account been locked, but someone had tried to break in. Two-factor had done its job and kept the attacker out, however, it had also inadvertently locked me out. The Apple support page relating to lockouts assured me it would be easy to recover my account with a combination of any two of either my password, a trusted device or the two-factor recovery key. When I headed to the account recovery service, dubbed iForgot, I discovered that there was no way back in without my recovery key. That's when it hit me; I had no idea where my recovery key was or if I'd ever even put the piece of paper in a safe place. I've moved since I set up two-factor on iCloud. I began nervously scouring the entire house for the code, before giving up after a few frustrating hours and began searching my computer for any trace of it. I found countless recovery keys but they weren't for the right things; for my Mac's hard-drive encryption, Twitter, Facebook and other accounts, but not for my Apple ID. How could I be foolish enough to misplace my Apple ID recovery key? I swore that I'd taken a screenshot, printed it and had taken a photo of it with my iPhone for extra safekeeping. This is when it began to sink in that this single ID held the keys to much of my digital life; everything from iTunes purchases going back seven years, app purchases and even the ability to get my iPhone out of the
RE: The dark side of Apple's two-factor authentication
Hi, I have to agree with you about two factor authentication and being responsible for your own security. About ten years ago my dad died and about a week later I saw him log into his Instant Messenger. Of course I knew it was a relative at the house snooping through his personal files so I wrote and asked him how he came back from the dead. It totally freaked my sister out trying to figure out how I knew she was in the house and on his computer. However, I having been his tech knew that he kept all his passwords on top of his monitor in a notebook labeled computer Passwords including the ones to his bank accounts, laughs! Merv -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout.
Re: The dark side of Apple's two-factor authentication
I do agree with this, Merv. The lady in th article does make some valid points but to me, she sounded a little whiny. Now I know it is frustrating but if you know there is 2 step verification and you use it, keep your stuff in multiple safe locations. Congratulations on having the only Dad return from the dead smile. On Dec 9, 2014, at 4:06 PM, Merv Keck blind5spar...@gmail.com wrote: Hi, I have to agree with you about two factor authentication and being responsible for your own security. About ten years ago my dad died and about a week later I saw him log into his Instant Messenger. Of course I knew it was a relative at the house snooping through his personal files so I wrote and asked him how he came back from the dead. It totally freaked my sister out trying to figure out how I knew she was in the house and on his computer. However, I having been his tech knew that he kept all his passwords on top of his monitor in a notebook labeled computer Passwords including the ones to his bank accounts, laughs! Merv -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/ http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com mailto:viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com mailto:viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout.
Re: The dark side of Apple's two-factor authentication
You and me both, Robin, never leave home without Braille. The only thing that would cause me to lose my verification when I enable it is a house fir. On Dec 9, 2014, at 3:43 PM, Robin Frost robinn...@gmail.com wrote: Hi, thank you for giving voice to that which I was thinking. I was just about to post and say while others suggest duplicating it on pen or USB drives here's one instance where braille is my friend. I have a notebook which contains all account numbers in my world in case more advanced technological devices fail. Braille is my friend. Sometimes a written word really is worth more than a picture as opposed to the old adage of a picture being worth a thousand words (smile). Robin From: Teresa Cochran mailto:batsfly...@me.com Sent: Tuesday, December 09, 2014 3:33 PM To: viphone@googlegroups.com mailto:viphone@googlegroups.com Subject: Re: The dark side of Apple's two-factor authentication Hi, Mark and all, The other day I erased and restored my iPod. I'd lost my recovery key. I installed Google Voice and had a code sent to that phone number, which was already established as one of my trusted devices. I reset my recovery key this way. Needless to say, I'm going to Braille it and put it somewhere safe, in case someone tries too many times to log in (most likely me) and I get locked out. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 12:10 PM, M. Taylor mk...@ucla.edu mailto:mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/ http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com mailto:viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com mailto:viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/ http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com mailto:viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com mailto:viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout.
Re: The dark side of Apple's two-factor authentication
They were lucky that they found their key. If you're going to use that system, you need to keep it stored somewhere you can find it. Personally I think the 2 factor authentication is a bit overboard, but that's just my opinion. Original message: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. Mark The dark side of Apple's two-factor authentication Earlier this week, a strange message popped up on my Mac that I thought nothing of. You can't sign in because your account was disabled for security reasons. I dismissed it in my tired haze, thinking it would solve itself and went to sleep. The next morning, I didn't have time to deal with the message - which was now popping up every half hour - for a few hours until it became annoying. I figured I'd done something dumb and broken iCloud, but that it could wait. I'd turned two-factor on my Apple ID in haste when I read Mat Honan's harrowing story about how his Mac, iPhone and other devices were wiped when someone broke into his iCloud account. That terrified me into thinking about real security for the first time. When I finally had time to investigate the errors appearing on my machine, I discovered that not only had my iCloud account been locked, but someone had tried to break in. Two-factor had done its job and kept the attacker out, however, it had also inadvertently locked me out. The Apple support page relating to lockouts assured me it would be easy to recover my account with a combination of any two of either my password, a trusted device or the two-factor recovery key. When I headed to the account recovery service, dubbed iForgot, I discovered that there was no way back in without my recovery key. That's when it hit me; I had no idea where my recovery key was or if I'd ever even put the piece of paper in a safe place. I've moved since I set up two-factor on iCloud. I began nervously scouring the entire house for the code, before giving up after a few frustrating hours and began searching my computer for any trace of it. I found countless recovery keys but they weren't for the right things; for my Mac's hard-drive encryption, Twitter, Facebook and other accounts, but not for my Apple ID. How could I be foolish enough to misplace my Apple ID recovery key? I swore that I'd taken a screenshot, printed it and had taken a photo of it with my iPhone for extra safekeeping. This is when it began to sink in that this single ID held the keys to much of my digital life; everything from iTunes purchases going back seven years, app purchases and even the ability to get my iPhone out of the grips of Find my iPhone's lock. The sinking feeling began. After fruitlessly searching and a lot of cussing, I decided to call Apple. I figured that something must be wrong, since the support page claims you can use trusted devices to recover your ID in cases like this. The first person I spoke to told me immediately after getting on the phone that in no uncertain terms I had forfeit my Apple ID by losing the recovery key. He refused to help me. I hung up and called back. On the second call, I got a lovely woman who totally understood my plight and how terrible it was. She told me a similar thing had happened to her, and it had turned out OK. After 20 minutes of poking around and lots of awkward sighing, she put me on hold to talk to a senior manager. When she got back on the line, the story was just as bleak. We take your security very seriously at Apple she told me but at this time we cannot grant you access back into your Apple account. We recommend you create a new Apple ID. I couldn't believe what I was hearing and fought back that surely there was some other way, but I was told point blank that Apple would not help me. I offered a scan of my government ID, my trusted devices and other proof that it was me. Nope, that won't do for Apple in this situation. She apologized profusely and said there was nothing more should do. Furious about the situation, I took to Twitter in a fit of rage, complaining that Apple couldn't help me out of a dumb situation, in which I could easily prove who I was. It was frustrating enough that when setting up my Apple ID, the company assured me I could recover the account with a trusted device. I know it was stupid that I'd lost the recovery key but I'd set it up so long ago I couldn't remember where it would conceivably be. There's only so many things I can keep track of. Besides, I figured I'd be able to use trusted device to get out of a mess like this. I'd looked almost everywhere twice by this point. Who remembers stuff like this? Apple's two factor signup process tries to point out the importance of the key when you set it up. You have to print the key, then re-enter it to show that you've got it. I don't think this step existed when it launched. So, I pushed on,
Re: The dark side of Apple's two-factor authentication
I personally found this article is laughable. It is the user choice to activated two factor authentication for Apple, then, they complain about how, Apple being too overly safe and security conchious for user protection... It is not Apple's fault if individuals forget their passwords, or their activation code is there. Apple always got good repitation for security, and now, someone actually complaining about Apple being too safe? That just, doesn't make sense to me... On 10/12/2014, Mike Arrigo n0...@charter.net wrote: They were lucky that they found their key. If you're going to use that system, you need to keep it stored somewhere you can find it. Personally I think the 2 factor authentication is a bit overboard, but that's just my opinion. Original message: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. Mark The dark side of Apple's two-factor authentication Earlier this week, a strange message popped up on my Mac that I thought nothing of. You can't sign in because your account was disabled for security reasons. I dismissed it in my tired haze, thinking it would solve itself and went to sleep. The next morning, I didn't have time to deal with the message - which was now popping up every half hour - for a few hours until it became annoying. I figured I'd done something dumb and broken iCloud, but that it could wait. I'd turned two-factor on my Apple ID in haste when I read Mat Honan's harrowing story about how his Mac, iPhone and other devices were wiped when someone broke into his iCloud account. That terrified me into thinking about real security for the first time. When I finally had time to investigate the errors appearing on my machine, I discovered that not only had my iCloud account been locked, but someone had tried to break in. Two-factor had done its job and kept the attacker out, however, it had also inadvertently locked me out. The Apple support page relating to lockouts assured me it would be easy to recover my account with a combination of any two of either my password, a trusted device or the two-factor recovery key. When I headed to the account recovery service, dubbed iForgot, I discovered that there was no way back in without my recovery key. That's when it hit me; I had no idea where my recovery key was or if I'd ever even put the piece of paper in a safe place. I've moved since I set up two-factor on iCloud. I began nervously scouring the entire house for the code, before giving up after a few frustrating hours and began searching my computer for any trace of it. I found countless recovery keys but they weren't for the right things; for my Mac's hard-drive encryption, Twitter, Facebook and other accounts, but not for my Apple ID. How could I be foolish enough to misplace my Apple ID recovery key? I swore that I'd taken a screenshot, printed it and had taken a photo of it with my iPhone for extra safekeeping. This is when it began to sink in that this single ID held the keys to much of my digital life; everything from iTunes purchases going back seven years, app purchases and even the ability to get my iPhone out of the grips of Find my iPhone's lock. The sinking feeling began. After fruitlessly searching and a lot of cussing, I decided to call Apple. I figured that something must be wrong, since the support page claims you can use trusted devices to recover your ID in cases like this. The first person I spoke to told me immediately after getting on the phone that in no uncertain terms I had forfeit my Apple ID by losing the recovery key. He refused to help me. I hung up and called back. On the second call, I got a lovely woman who totally understood my plight and how terrible it was. She told me a similar thing had happened to her, and it had turned out OK. After 20 minutes of poking around and lots of awkward sighing, she put me on hold to talk to a senior manager. When she got back on the line, the story was just as bleak. We take your security very seriously at Apple she told me but at this time we cannot grant you access back into your Apple account. We recommend you create a new Apple ID. I couldn't believe what I was hearing and fought back that surely there was some other way, but I was told point blank that Apple would not help me. I offered a scan of my government ID, my trusted devices and other proof that it was me. Nope, that won't do for Apple in this situation. She apologized profusely and said there was nothing more should do. Furious about the situation, I took to Twitter in a fit of rage, complaining that Apple couldn't help me out of a dumb situation, in which I could easily prove who I was. It was frustrating enough that when setting up my Apple ID, the company assured me I could recover the account with a trusted device. I know it was
Re: The dark side of Apple's two-factor authentication
Hi, There's nothing dark about this at all; the article's clearly been written by someone who's extremely annoyed that they nearly lost access to their Apple ID and is trying to find ways they can portray Apple in a bad light. In the nicest way possible, I for one am quite glad that the author became locked out, purely because the article in its own little way acts as a piece of evidance that the service does what it's meant to do. That's what this entire article boils down too really; author enables a service, time passes, the service kicks in is shown to function as advertised author gets annoyed that said service is working. Enabling things like two factor authentication should not be done without careful consideration as to how an account can be recovered, although I understand that some accounts will naturally be more important than others. For me, the most important information is stored offline in both paper electronic form online using a number of different services in a number of different countries. Obviously there are only a few things that warrant measures like this; for me this is mainly research that I have performed but the same processes can be applied to almost anything. JMO of course; definitely be secure but be careful as well. On 12/9/14, Hope Paulos hope.pau...@gmail.com wrote: How can you set up to factor authentication for an existing Apple ID? I don't believe I have the set up… Hope Paulos On Dec 9, 2014, at 3:33 PM, Teresa Cochran batsfly...@me.com wrote: Hi, Mark and all, The other day I erased and restored my iPod. I'd lost my recovery key. I installed Google Voice and had a code sent to that phone number, which was already established as one of my trusted devices. I reset my recovery key this way. Needless to say, I'm going to Braille it and put it somewhere safe, in case someone tries too many times to log in (most likely me) and I get locked out. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 12:10 PM, M. Taylor mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout.
RE: The dark side of Apple's two-factor authentication
I'M GUESSING THE RECOVERY KEY IS DEFINED BY Apple? How many characters do these tend to be? Just wondering if the recovery key is provided by Apple, but then can users change it to their own preference? Like some temporary passwords provided by some websites. Thanks in advance. Keith -Original Message- From: viphone@googlegroups.com [mailto:viphone@googlegroups.com] On Behalf Of M. Taylor Sent: Tuesday, December 09, 2014 2:10 PM To: viphone@googlegroups.com Subject: The dark side of Apple's two-factor authentication Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. Mark The dark side of Apple's two-factor authentication Earlier this week, a strange message popped up on my Mac that I thought nothing of. You can't sign in because your account was disabled for security reasons. I dismissed it in my tired haze, thinking it would solve itself and went to sleep. The next morning, I didn't have time to deal with the message - which was now popping up every half hour - for a few hours until it became annoying. I figured I'd done something dumb and broken iCloud, but that it could wait. I'd turned two-factor on my Apple ID in haste when I read Mat Honan's harrowing story about how his Mac, iPhone and other devices were wiped when someone broke into his iCloud account. That terrified me into thinking about real security for the first time. When I finally had time to investigate the errors appearing on my machine, I discovered that not only had my iCloud account been locked, but someone had tried to break in. Two-factor had done its job and kept the attacker out, however, it had also inadvertently locked me out. The Apple support page relating to lockouts assured me it would be easy to recover my account with a combination of any two of either my password, a trusted device or the two-factor recovery key. When I headed to the account recovery service, dubbed iForgot, I discovered that there was no way back in without my recovery key. That's when it hit me; I had no idea where my recovery key was or if I'd ever even put the piece of paper in a safe place. I've moved since I set up two-factor on iCloud. I began nervously scouring the entire house for the code, before giving up after a few frustrating hours and began searching my computer for any trace of it. I found countless recovery keys but they weren't for the right things; for my Mac's hard-drive encryption, Twitter, Facebook and other accounts, but not for my Apple ID. How could I be foolish enough to misplace my Apple ID recovery key? I swore that I'd taken a screenshot, printed it and had taken a photo of it with my iPhone for extra safekeeping. This is when it began to sink in that this single ID held the keys to much of my digital life; everything from iTunes purchases going back seven years, app purchases and even the ability to get my iPhone out of the grips of Find my iPhone's lock. The sinking feeling began. After fruitlessly searching and a lot of cussing, I decided to call Apple. I figured that something must be wrong, since the support page claims you can use trusted devices to recover your ID in cases like this. The first person I spoke to told me immediately after getting on the phone that in no uncertain terms I had forfeit my Apple ID by losing the recovery key. He refused to help me. I hung up and called back. On the second call, I got a lovely woman who totally understood my plight and how terrible it was. She told me a similar thing had happened to her, and it had turned out OK. After 20 minutes of poking around and lots of awkward sighing, she put me on hold to talk to a senior manager. When she got back on the line, the story was just as bleak. We take your security very seriously at Apple she told me but at this time we cannot grant you access back into your Apple account. We recommend you create a new Apple ID. I couldn't believe what I was hearing and fought back that surely there was some other way, but I was told point blank that Apple would not help me. I offered a scan of my government ID, my trusted devices and other proof that it was me. Nope, that won't do for Apple in this situation. She apologized profusely and said there was nothing more should do. Furious about the situation, I took to Twitter in a fit of rage, complaining that Apple couldn't help me out of a dumb situation, in which I could easily prove who I was. It was frustrating enough that when setting up my Apple ID, the company assured me I could recover the account with a trusted device. I know it was stupid that I'd lost the recovery key but I'd set it up so long ago I couldn't remember where it would conceivably be. There's only so many things I can keep track of. Besides, I figured I'd be able to use trusted device to get out of a mess like this. I'd looked almost everywhere twice by this point. Who remembers stuff like this?
RE: The dark side of Apple's two-factor authentication
Hmmm, I found this on the web. I don’t know how new it is, but it appears, from reading this, that one can reset their recovery key. I find this strange in that if someone who has hacked into your iCloud has your password, what’s to stop them from doing this as well. What if I lose my Recovery Key? If you lose your Recovery Key http://support.apple.com/kb/HT5577 , you can replace it any time: 1. Go to My Apple ID https://appleid.apple.com/account/home . 2. Select Manage your Apple ID and sign in with your password and trusted device. 3. Select Password and Security. 4. Under Recovery Key, select Replace Lost Key. When you create a new key, your old Recovery Key is no longer usable http://support.apple.com/kb/HT5577 . Me again. Anyway, thanks for sharing this information. It will certainly help someone at some point. Neal From: viphone@googlegroups.com [mailto:viphone@googlegroups.com] On Behalf Of Teresa Cochran Sent: Tuesday, December 09, 2014 2:34 PM To: viphone@googlegroups.com Subject: Re: The dark side of Apple's two-factor authentication Hi, Mark and all, The other day I erased and restored my iPod. I'd lost my recovery key. I installed Google Voice and had a code sent to that phone number, which was already established as one of my trusted devices. I reset my recovery key this way. Needless to say, I'm going to Braille it and put it somewhere safe, in case someone tries too many times to log in (most likely me) and I get locked out. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 12:10 PM, M. Taylor mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout.
RE: The dark side of Apple's two-factor authentication
And if all that fails, you can give the information to a trusted friend or spouse. Then, even if all your computers and devices are stolen, you will still have it. I applaud Apple for being so strict that it will not give out this number. How do they really know it's you. After all, other people could swear that they are you and they could have more of your information than you might think to prove that they are. Neal -Original Message- From: viphone@googlegroups.com [mailto:viphone@googlegroups.com] On Behalf Of Raul A. Gallegos Sent: Tuesday, December 09, 2014 5:36 PM To: viphone@googlegroups.com Subject: Re: The dark side of Apple's two-factor authentication I don't agree withthis as the Darkside of apple's 2 step authentication for your safety. If people cannot be responsible to keep their security unlock key in a safe place then that is not apple's fault. I have the service enabled and I have all my safe recovery keys in an area that I can get to from either my iPhone or my computer or my iPad. I would have to experience a complete shutdown and lack of access from my Windows machine as well as my Apple devices in order for me to not have access to that key. I understand there can be some annoyance with too much security, however anytime extra security measures are added the companies that are offering the services are very clear about you needing to keep any sort of recovery keys available to you at all times. On Dec 9, 2014, at 2:10 PM, M. Taylor mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. Mark The dark side of Apple's two-factor authentication Earlier this week, a strange message popped up on my Mac that I thought nothing of. You can't sign in because your account was disabled for security reasons. I dismissed it in my tired haze, thinking it would solve itself and went to sleep. The next morning, I didn't have time to deal with the message - which was now popping up every half hour - for a few hours until it became annoying. I figured I'd done something dumb and broken iCloud, but that it could wait. I'd turned two-factor on my Apple ID in haste when I read Mat Honan's harrowing story about how his Mac, iPhone and other devices were wiped when someone broke into his iCloud account. That terrified me into thinking about real security for the first time. When I finally had time to investigate the errors appearing on my machine, I discovered that not only had my iCloud account been locked, but someone had tried to break in. Two-factor had done its job and kept the attacker out, however, it had also inadvertently locked me out. The Apple support page relating to lockouts assured me it would be easy to recover my account with a combination of any two of either my password, a trusted device or the two-factor recovery key. When I headed to the account recovery service, dubbed iForgot, I discovered that there was no way back in without my recovery key. That's when it hit me; I had no idea where my recovery key was or if I'd ever even put the piece of paper in a safe place. I've moved since I set up two-factor on iCloud. I began nervously scouring the entire house for the code, before giving up after a few frustrating hours and began searching my computer for any trace of it. I found countless recovery keys but they weren't for the right things; for my Mac's hard-drive encryption, Twitter, Facebook and other accounts, but not for my Apple ID. How could I be foolish enough to misplace my Apple ID recovery key? I swore that I'd taken a screenshot, printed it and had taken a photo of it with my iPhone for extra safekeeping. This is when it began to sink in that this single ID held the keys to much of my digital life; everything from iTunes purchases going back seven years, app purchases and even the ability to get my iPhone out of the grips of Find my iPhone's lock. The sinking feeling began. After fruitlessly searching and a lot of cussing, I decided to call Apple. I figured that something must be wrong, since the support page claims you can use trusted devices to recover your ID in cases like this. The first person I spoke to told me immediately after getting on the phone that in no uncertain terms I had forfeit my Apple ID by losing the recovery key. He refused to help me. I hung up and called back. On the second call, I got a lovely woman who totally understood my plight and how terrible it was. She told me a similar thing had happened to her, and it had turned out OK. After 20 minutes of poking around and lots of awkward sighing, she put me on hold to talk to a senior manager. When she got back on the line, the story was just as bleak. We take your security very seriously at Apple she told me but at this time we
Re: The dark side of Apple's two-factor authentication
Apple generatet a key, but doesn't keep it. You can only reset it. The key is about fifteen characters long, I believe. We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 3:44 PM, Neal Ewers neal.ew...@ravenswood.org wrote: And if all that fails, you can give the information to a trusted friend or spouse. Then, even if all your computers and devices are stolen, you will still have it. I applaud Apple for being so strict that it will not give out this number. How do they really know it's you. After all, other people could swear that they are you and they could have more of your information than you might think to prove that they are. Neal -Original Message- From: viphone@googlegroups.com [mailto:viphone@googlegroups.com] On Behalf Of Raul A. Gallegos Sent: Tuesday, December 09, 2014 5:36 PM To: viphone@googlegroups.com Subject: Re: The dark side of Apple's two-factor authentication I don't agree withthis as the Darkside of apple's 2 step authentication for your safety. If people cannot be responsible to keep their security unlock key in a safe place then that is not apple's fault. I have the service enabled and I have all my safe recovery keys in an area that I can get to from either my iPhone or my computer or my iPad. I would have to experience a complete shutdown and lack of access from my Windows machine as well as my Apple devices in order for me to not have access to that key. I understand there can be some annoyance with too much security, however anytime extra security measures are added the companies that are offering the services are very clear about you needing to keep any sort of recovery keys available to you at all times. On Dec 9, 2014, at 2:10 PM, M. Taylor mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. Mark The dark side of Apple's two-factor authentication Earlier this week, a strange message popped up on my Mac that I thought nothing of. You can't sign in because your account was disabled for security reasons. I dismissed it in my tired haze, thinking it would solve itself and went to sleep. The next morning, I didn't have time to deal with the message - which was now popping up every half hour - for a few hours until it became annoying. I figured I'd done something dumb and broken iCloud, but that it could wait. I'd turned two-factor on my Apple ID in haste when I read Mat Honan's harrowing story about how his Mac, iPhone and other devices were wiped when someone broke into his iCloud account. That terrified me into thinking about real security for the first time. When I finally had time to investigate the errors appearing on my machine, I discovered that not only had my iCloud account been locked, but someone had tried to break in. Two-factor had done its job and kept the attacker out, however, it had also inadvertently locked me out. The Apple support page relating to lockouts assured me it would be easy to recover my account with a combination of any two of either my password, a trusted device or the two-factor recovery key. When I headed to the account recovery service, dubbed iForgot, I discovered that there was no way back in without my recovery key. That's when it hit me; I had no idea where my recovery key was or if I'd ever even put the piece of paper in a safe place. I've moved since I set up two-factor on iCloud. I began nervously scouring the entire house for the code, before giving up after a few frustrating hours and began searching my computer for any trace of it. I found countless recovery keys but they weren't for the right things; for my Mac's hard-drive encryption, Twitter, Facebook and other accounts, but not for my Apple ID. How could I be foolish enough to misplace my Apple ID recovery key? I swore that I'd taken a screenshot, printed it and had taken a photo of it with my iPhone for extra safekeeping. This is when it began to sink in that this single ID held the keys to much of my digital life; everything from iTunes purchases going back seven years, app purchases and even the ability to get my iPhone out of the grips of Find my iPhone's lock. The sinking feeling began. After fruitlessly searching and a lot of cussing, I decided to call Apple. I figured that something must be wrong, since the support page claims you can use trusted devices to recover your ID in cases like this. The first person I spoke to told me immediately after getting on the phone that in no uncertain terms I had forfeit my Apple ID by losing the recovery key. He refused to help me. I hung up and called back. On the second call, I got a lovely woman who totally understood my plight
Re: The dark side of Apple's two-factor authentication
The instructions don't mention what you have to do to reset your key. What you have to do is provide both your iCloud passcode (not your account password) *and your trusted device that you've already set up is sent a text message with a six-digit code with a short expiration period. ONLY when you do these two steps can you reset your key, hence two-factor authentication. I speak from experience, having followed those instructions and reset my key. :) Teresa. We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 12:56 PM, Neal Ewers neal.ew...@ravenswood.org wrote: Hmmm, I found this on the web. I don’t know how new it is, but it appears, from reading this, that one can reset their recovery key. I find this strange in that if someone who has hacked into your iCloud has your password, what’s to stop them from doing this as well. What if I lose my Recovery Key? If you lose your Recovery Key, you can replace it any time: 1. Go to My Apple ID. 2. Select Manage your Apple ID and sign in with your password and trusted device. 3. Select Password and Security. 4. Under Recovery Key, select Replace Lost Key. When you create a new key, your old Recovery Key is no longer usable. Me again. Anyway, thanks for sharing this information. It will certainly help someone at some point. Neal From: viphone@googlegroups.com [mailto:viphone@googlegroups.com] On Behalf Of Teresa Cochran Sent: Tuesday, December 09, 2014 2:34 PM To: viphone@googlegroups.com Subject: Re: The dark side of Apple's two-factor authentication Hi, Mark and all, The other day I erased and restored my iPod. I'd lost my recovery key. I installed Google Voice and had a code sent to that phone number, which was already established as one of my trusted devices. I reset my recovery key this way. Needless to say, I'm going to Braille it and put it somewhere safe, in case someone tries too many times to log in (most likely me) and I get locked out. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 12:10 PM, M. Taylor mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com. To post to this group, send email to viphone@googlegroups.com. Visit
Re: The dark side of Apple's two-factor authentication
so, here's the question. I ahve an ipad, and an iphone.I've never even ehard of this recovery key. Where would i get 1 from Apple? On 12/9/2014 3:10 PM, M. Taylor wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. Mark The dark side of Apple's two-factor authentication Earlier this week, a strange message popped up on my Mac that I thought nothing of. You can't sign in because your account was disabled for security reasons. I dismissed it in my tired haze, thinking it would solve itself and went to sleep. The next morning, I didn't have time to deal with the message - which was now popping up every half hour - for a few hours until it became annoying. I figured I'd done something dumb and broken iCloud, but that it could wait. I'd turned two-factor on my Apple ID in haste when I read Mat Honan's harrowing story about how his Mac, iPhone and other devices were wiped when someone broke into his iCloud account. That terrified me into thinking about real security for the first time. When I finally had time to investigate the errors appearing on my machine, I discovered that not only had my iCloud account been locked, but someone had tried to break in. Two-factor had done its job and kept the attacker out, however, it had also inadvertently locked me out. The Apple support page relating to lockouts assured me it would be easy to recover my account with a combination of any two of either my password, a trusted device or the two-factor recovery key. When I headed to the account recovery service, dubbed iForgot, I discovered that there was no way back in without my recovery key. That's when it hit me; I had no idea where my recovery key was or if I'd ever even put the piece of paper in a safe place. I've moved since I set up two-factor on iCloud. I began nervously scouring the entire house for the code, before giving up after a few frustrating hours and began searching my computer for any trace of it. I found countless recovery keys but they weren't for the right things; for my Mac's hard-drive encryption, Twitter, Facebook and other accounts, but not for my Apple ID. How could I be foolish enough to misplace my Apple ID recovery key? I swore that I'd taken a screenshot, printed it and had taken a photo of it with my iPhone for extra safekeeping. This is when it began to sink in that this single ID held the keys to much of my digital life; everything from iTunes purchases going back seven years, app purchases and even the ability to get my iPhone out of the grips of Find my iPhone's lock. The sinking feeling began. After fruitlessly searching and a lot of cussing, I decided to call Apple. I figured that something must be wrong, since the support page claims you can use trusted devices to recover your ID in cases like this. The first person I spoke to told me immediately after getting on the phone that in no uncertain terms I had forfeit my Apple ID by losing the recovery key. He refused to help me. I hung up and called back. On the second call, I got a lovely woman who totally understood my plight and how terrible it was. She told me a similar thing had happened to her, and it had turned out OK. After 20 minutes of poking around and lots of awkward sighing, she put me on hold to talk to a senior manager. When she got back on the line, the story was just as bleak. We take your security very seriously at Apple she told me but at this time we cannot grant you access back into your Apple account. We recommend you create a new Apple ID. I couldn't believe what I was hearing and fought back that surely there was some other way, but I was told point blank that Apple would not help me. I offered a scan of my government ID, my trusted devices and other proof that it was me. Nope, that won't do for Apple in this situation. She apologized profusely and said there was nothing more should do. Furious about the situation, I took to Twitter in a fit of rage, complaining that Apple couldn't help me out of a dumb situation, in which I could easily prove who I was. It was frustrating enough that when setting up my Apple ID, the company assured me I could recover the account with a trusted device. I know it was stupid that I'd lost the recovery key but I'd set it up so long ago I couldn't remember where it would conceivably be. There's only so many things I can keep track of. Besides, I figured I'd be able to use trusted device to get out of a mess like this. I'd looked almost everywhere twice by this point. Who remembers stuff like this? Apple's two factor signup process tries to point out the importance of the key when you set it up. You have to print the key, then re-enter it to show that you've got it. I don't think this step existed when it launched. So, I pushed on, resuming the hunt. As 24 hours without my Apple ID approached, iMessage broke and my devices all started incessantly
RE: The dark side of Apple's two-factor authentication
Hi Neal, For somebody else to change the recovery key they would have to physically get a hold of one of your trusted devices as well as know your password. The recovery key is randomly generated and can’t be changed to a user defined value. I also keep mine in a SafeNote in my Roboform password manager which of course means even if everything I own burns to the ground I could still access all my passwords and important information as long as I remember my Roboform login credentials. Of course one could argue that if somebody gains access to my Roboform password, they could get access to a lot of sensitive information. This is of course true, but they would actually have to know that I use Roboform, what my user name is (Roboform does not use an email address to log in) and then they would have to know my password which for Roboform is 18 characters including upper case, lower case, symbols and numbers. It’s probably my longest and most secure password. The master password I use on a day to day bases to access my passcards and SafeNotes is only 14 characters, but it’s of no use unless somebody has physical access to one of my computers or my iPhone and on my iPhone the app is additionally protected since you can’t even open it without a 4-digit passcode which is different from the 4-digit passcode which unlocks my phone. It is possible to be quite save online if you use common sense and good passwords. Regards, Sieghard From: viphone@googlegroups.com [mailto:viphone@googlegroups.com] On Behalf Of Neal Ewers Sent: Tuesday, December 09, 2014 12:57 PM To: viphone@googlegroups.com Subject: RE: The dark side of Apple's two-factor authentication Hmmm, I found this on the web. I don’t know how new it is, but it appears, from reading this, that one can reset their recovery key. I find this strange in that if someone who has hacked into your iCloud has your password, what’s to stop them from doing this as well. What if I lose my Recovery Key? If you lose your Recovery Key http://support.apple.com/kb/HT5577 , you can replace it any time: 1. Go to My Apple ID https://appleid.apple.com/account/home . 2. Select Manage your Apple ID and sign in with your password and trusted device. 3. Select Password and Security. 4. Under Recovery Key, select Replace Lost Key. When you create a new key, your old Recovery Key is no longer usable http://support.apple.com/kb/HT5577 . Me again. Anyway, thanks for sharing this information. It will certainly help someone at some point. Neal From: viphone@googlegroups.com [mailto:viphone@googlegroups.com] On Behalf Of Teresa Cochran Sent: Tuesday, December 09, 2014 2:34 PM To: viphone@googlegroups.com Subject: Re: The dark side of Apple's two-factor authentication Hi, Mark and all, The other day I erased and restored my iPod. I'd lost my recovery key. I installed Google Voice and had a code sent to that phone number, which was already established as one of my trusted devices. I reset my recovery key this way. Needless to say, I'm going to Braille it and put it somewhere safe, in case someone tries too many times to log in (most likely me) and I get locked out. Teresa We can see with the eyes, but we see with the brain as well, and seeing with the brain is often called imagination.--Oliver Sacks On Dec 9, 2014, at 12:10 PM, M. Taylor mk...@ucla.edu mailto:mk...@ucla.edu wrote: Hello Everyone, I strongly suggest that you read the following article, very carefully. The link to the original post may be found at the end of the text. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com/viphone@googlegroups.com/. --- You received this message because you are subscribed to the Google Groups VIPhone group. To unsubscribe from this group and stop receiving emails from it, send an email to viphone+unsubscr...@googlegroups.com mailto:viphone+unsubscr...@googlegroups.com . To post to this group, send email to viphone@googlegroups.com mailto:viphone@googlegroups.com . Visit this group at http://groups.google.com/group/viphone. For more options, visit https://groups.google.com/d/optout. -- The following information is important for all members of the viphone list. All new members to the this list are moderated by default. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. The archives for this list can be searched at http://www.mail-archive.com