undefined | Better HN

0 pointsalehlopeh1y ago0 comments

If someone knows your username and password and can convince you to give them a TOTP code, then yeah they can log in to your account. That’s hardly iCloud-specific.

0 comments

_1tem1y ago

iCloud Passwords is more secure than that. Even a TOTP code and password is not enough to initiate a password sync. You also need to biometrically authenticate a previously synced device

pohuing1y ago

Thinking about it, what happens if you lose your eyes or your fingercups(say for example from frostbite). Are you just screwed or is there a recovery method

_1tem1y ago

I make my own encrypted backups from CSV exports.

j / k navigate · click thread line to collapse

0 pointsalehlopeh1y ago0 comments

If someone knows your username and password and can convince you to give them a TOTP code, then yeah they can log in to your account. That’s hardly iCloud-specific.

0 comments

_1tem1y ago

iCloud Passwords is more secure than that. Even a TOTP code and password is not enough to initiate a password sync. You also need to biometrically authenticate a previously synced device

pohuing1y ago

Thinking about it, what happens if you lose your eyes or your fingercups(say for example from frostbite). Are you just screwed or is there a recovery method

_1tem1y ago

I make my own encrypted backups from CSV exports.

j / k navigate · click thread line to collapse