Path: ...!3.eu.feeder.erje.net!feeder.erje.net!fu-berlin.de!uni-berlin.de!individual.net!not-for-mail
From: Jolly Roger <jollyroger@pobox.com>
Newsgroups: comp.sys.mac.system
Subject: Re: RockYou2024 leak of 10 billion passwords - the biggest password
 leak ever
Date: 11 Jul 2024 20:27:20 GMT
Organization: People for the Ethical Treatment of Pirates
Lines: 37
Message-ID: <lfath7Ffv9gU1@mid.individual.net>
References: <v6cjud$1sp0$1@nnrp.usenet.blueworldhosting.com>
 <v6pek0$2k746$1@dont-email.me>
X-Trace: individual.net OEjjnPeYhA6IjQwLoV7rlQcbUb7s60gvq91bL3tx1MPe8Lp8wR
Cancel-Lock: sha1:tGGQmQKlL8wnEzl7Cq0LuNGXRq0= sha256:nlh8ZMjW5yK57+AnPiitUfogJh7hZbqIk2kt1Cop5BE=
Mail-Copies-To: nobody
X-Face: _.g>n!a$f3/H3jA]>9pN55*5<`}Tud57>1<n@LQ!aZ7vLO_nWbK~@T'XIS0,oAJcU.qLM
 dk/j8Udo?O"o9B9Jyx+ez2:B<nx(k3EdHnTvB]'eoVaR495,Rv~/vPa[e^JI+^h5Zk*i`Q;ezqDW<
 ZFs6kmAJWZjOH\8[$$7jm,Ogw3C_%QM'|H6nygNGhhl+@}n30Nz(^vWo@h>Y%b|b-Y~()~\t,LZ3e
 up1/bO{=-)
User-Agent: slrn/1.0.3 (Darwin)
Bytes: 2523

On 2024-07-11, Fishrrman <Fishrrman2000@yahoo.com> wrote:
>
> I'm currently experimenting with Apple's new OS 15 "Sequoia" on an
> external SSD.
>
> One of the new features of this release will be the Apple "Passwords"
> app.
>
> Although (up to this point) I've kept all my passwords in a
> self-created database, I opened Passwords to see what it was like.
>
> It had already compiled a list of passwords that I'd been using on the
> experimental Sequoia SSD.

Those are passwords you entered in Safari presumably, which stored them
in the Keychain. In previous releases Keychain passwords were accessible
either in the System Settings > Passwords pane or in the Keychain app,
depending on the macOS release version.

> But one feature that looked welcome was...  ... it identified two of
> my passwords that may have recently been "compromised". It looks like
> the Passwords app is reaching into some "resevoir" of
> "known-compromised" passwords, or perhaps even Apple has acquired some
> of these giant purloined password files.
>
> In any case, it lets you know if specific passwords you're using may
> be compromised...

Yes, that's been a Keychain feature for some time now. It even has
buttons that take you to the website in question to change your password
there. It's pretty handy. 

-- 
E-mail sent to this address may be devoured by my ravenous SPAM filter.
I often ignore posts from Google. Use a real news client instead.

JR