Path: ...!news.mixmin.net!news.swapon.de!fu-berlin.de!uni-berlin.de!individual.net!not-for-mail From: Jolly Roger Newsgroups: comp.sys.mac.system Subject: Re: Sequoia 15 - Passwords / Errata /^ Date: 24 Sep 2024 22:01:15 GMT Organization: People for the Ethical Treatment of Pirates Lines: 32 Message-ID: References: Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Trace: individual.net 76j9pL1b4l4WAS7dH8WTzwiy10ICQQzcv2CcT0RXpBl1QVse3p Cancel-Lock: sha1:0+hLgiu7tn+H5QxoiAVEN4DkDDk= sha256:hf+RUl8pLvxANYueEY2Y/mom07zMudNo814dcenm2yU= Mail-Copies-To: nobody X-Face: _.g>n!a$f3/H3jA]>9pN55*5<`}Tud57>1Y%b|b-Y~()~\t,LZ3e up1/bO{=-) User-Agent: slrn/1.0.3 (Darwin) Bytes: 2384 On 2024-09-24, Alan Browne wrote: > On 2024-09-24 17:01, Alan Browne wrote: >> On 2024-09-24 14:18, Jolly Roger wrote: > >>> I do have a minor gripe with the new Passwords app: When viewing the >>> details page for a given password, the 2FA code doesn't display any sort > > I think you meant One-time-password here, not 2FA. > >>> of visual count down to when they expire and change to a new number. >>> So you might start to enter a number only to have it change before you >>> are done. Other 2FA authenticator apps I've used give you an >>> indication (such as > >> Haven't used Apple Password 2FA gen'd codes so no comment - but I get > OTP >> what you mean.  Usually (from my side) the 2FA is the site I'm logging >> onto sending a code via SMS (which is not super secure[1]). I did, thanks for the correction! > [1] Veritasium hacks Linus Tech Tips phone: > https://www.youtube.com/watch?v=wVyu7NB7W6Y Yep! SMS messages can also be easily spoofed. It's just not secure by design. -- E-mail sent to this address may be devoured by my ravenous SPAM filter. I often ignore posts from Google. Use a real news client instead. JR