Apple Sued Over Not Letting Customers Disable Two-Factor Authentication After Two Weeks

[Gogeta-Blue]

well if i understand correctly i think many usets here are missing the point

if i setup a 2FA i should be able to turn it off if i decide that i don’t want it, need it or like it

why do i have to wait 2 weeks for that
????????

some times we change settings to see what it does ir how the system
performed after making those changes but if is not what we expected we can always revert the changes and go back and have everything the way we had it before we made the changes

apple can’t forced me or give me a timer for me to change a setting on my system

it really depends how you see it

imagen entering a passcode but then you change your mind and you don’t want a passcode in your phone
but apple decides that you have to wait a month to disable your passcode after you enable it

i think that is the point we are discussing here

you buy the phone, is yours, it belongs to you but apple wants to take control of your phone via their software

your hardware is being taken as a hostage by apple software

 

[Gogeta-Blue]

well it seems is the opposite
you can’t turn it off if you use it for more than 2 weeks

i remember i used 2FA for months but then i turn it off for a few months

i recently re enable 2FA
that means that if i used for 2 weeks which i think they already passed then i won’t be able to turn off 2FA like i once did in the past

sorry but i agree and i think this is wrong by apple, i understand your security concerns but at the end of the day is my device, i don’t even use a passcode

 

[RevTEG]

pathetic!! so people don't want security anymore great

I don't think security is the main issue. I think it's having the choice. I personal like two factor but I can see how wanting the option on a device that is individually bought and owned could be wanted by some. I've been using it for several years and had no idea that I couldn't turn it off after two weeks. I'm long past that.

 

[Ruskes]

Meanwhile everyone else has adopted the two step verification.
It is good to know that all my online accounts are safer.

 

[indychris]

I set up the Apple ID before it was called Apple ID, back when I wanted to buy songs on iTunes in the early 2000's. I have had other immediate family members (not children in my case) share the Apple ID, mostly now so it shares songs purchased on iTunes with DRM. Basically Apple invented all of these family ID sharing terms and conditions way after I started using it, and I don't want to change everything around and create all these new Apple IDs because of it. So if 2FA got stuck on, it would ping other devices and cause problems. Yes, I'm not up-to-date on adjusting to Apple's new account practices, but I don't want to. That's why 2FA is a problem here. I'm sure Apple also wants to reduce security breaches by forcing people to slowly migrate over to 2FA, but this was an unintended consequence which I luckily was able to reverse.

I have an original ‘Apple id’ back when you could actually create a non-email version, too. Really wasn’t that big of a deal for me. All I have to do for those DRM songs I purchased is authenticate my computer with both ID’s and sync those items with my phone. It’s at worst a minor ‘hassle’ but in reality doesn’t cause any trouble at all.

 

[chromite]

Without commenting on the merits of this case, I'd prefer that the MacRumors team not editorialize like this. Leave that to the pundits. Share the facts and leave it at that.

We can come to our own conclusions, thankyouverymuch.

Replying to agree that the word frivolous stood out to me also. Unnecessary.

 

[Ruskes]

I’m pretty sure you can’t. My mom wanted it off because she doesn’t have a second device and she ended up just linking it to my sisters phone

What second device ?

 

[dilbert99]

I don’t believe you are necessarily entitled to that particular choice, no. However, I can be convinced. So, since you are the one positing that such a choice is an entitlement, I repeat my question: why? What is the source of this entitlement? Contractual? Deriving from statute? Natural law? Is everyone entitled to choices in every situation? Is every manufacturer required to allow me to customize every device in any way I want? Are they required to cede their rights under Title 17 of the U.S. Code?

What is your basis for saying that consumers have this right, and how far does this right extend?

mine is more a general thing that people should have certain freedoms.
or to put it another way, where do you draw the line...its always a slippery slope.

 

[mylittlepwny]

I find it infuriating how I have to enter a password after rebooting (or after 48hrs for some reason) with Apple devices even though they have biometrics. Seriously why can't that be disabled?

 

[Ruskes]

Here is the difference !

I can "accidentally" publish my Apple ID right here in this forum.

and with 2 step verification I am still safe!

Try that without 2 step verification.

 

[kwikdeth]

while i do agree the lawsuit is frivolous, I also think that 2FA on Apple devices could use some work. Just looking through the comments there's some great examples of ways it needs work.

 

[Zwhaler]

Here is the difference !

I can publish my Apple ID right here in this forum.

and with 2 step verification I am still safe!

Try that without 2 step verification.

I don't think the issue is with 2FA, it's that it gets stuck on permanently because of the 2-week rule. Let us turn it off, that is all.

 

[racerhomie]

I want to sue this dude for wanting to make our Apple accounts less secure. There are actual reasons to sue Apple. For eg, defective keyboards for 2016-2017 Pros, poor designs choices on the Stagelight Macbook issue.

 

[theapplehead]

I’m just going to sue apple for feature requests now. The phone icon is prejudiced against young people who aren’t familiar with what a telephone looks like. It’s ageist and insensitive. Now give us all three cents for the emotional damage this has caused us.

Welcome to modern day America my friends.
I feel you man.
Sincerely,
Lmao

 

[racerhomie]

I don't think the issue is with 2FA, it's that it gets stuck on permanently because of the 2-week rule. Let us turn it off, that is all.

You dont get to make your accounts less secure.

 

[Ruskes]

I don't think the issue is with 2FA, it's that it gets stuck on permanently because of the 2-week rule. Let us turn it off, that is all.

Do you still want to keep your PIN code for the ATM ?

 

[curtvaughan]

As much as I'm upset with Apple the last few years, this is frivolous and silly. Two-factor authentication is a necessary evil to combat hacking and snooping in the modern internet world of hackers, NSA, and other data criminals. I don't know the details behind the two-week limit, but the fact is, if you don't want to have to worry about your computer/mobile device being stolen and subsumed, and your very identity counterfeited, do double authentication. It's a hassle that I continue to grumble about - I hate having to carry my smartphone with me every time I need to do a financial transaction over the internet, but better that hassle than to be hacked and screwed by the criminals. Meh.

 

[chabig]

I find it infuriating how I have to enter a password after rebooting (or after 48hrs for some reason) with Apple devices even though they have biometrics. Seriously why can't that be disabled?

That's because your biometric identity is encrypted for safety and your password is what enables it.

 

[pesos]

This is not the black and white issue so many of the moaners here are trying to make it out to be. I'm certainly not against 2fa in principle - I don't care for Apple's poor implementation of it nor their craptastic moves such as not updating gen2 apple tvs to work with 2fa, etc.

 

[chabig]

...not updating gen2 apple tvs to work with 2fa

But it does work with 2FA.

 

[sparkso]

i couldn't recover one of my apple id due to the fact that i lost my device that was used for 2FA.

Another annoying thing is that I used one device for 2FA for another account but then i don't get 2FA notifications for other devices that I actively use.

 

[ThatGuyInLa]

I am all for security, but this is what makes using older operating systems on Macs really hard if you want to use your cloud account. For example El Capitan is the oldest operating system that supports two factor authentication. Yet I need to run lion. Or I need to log into my iCloud account under Lion to make a change to allow something to work, and I can’t.

Finally you have to have another device to authorize this on. This is simply a way for Apple to make you upgrade your operating system and also buy more hardware. Security has very little to do with it. You can’t enable keychain for example unless you have a second Apple device to verify it’s activation.

 

[pesos]

But it does work with 2FA.

If you're talking about the unreasonable workaround of appending the 2factor code to your password, that doesn't fall under "working." It's impossible for just about anyone, much less my mother in law in her 60s, to type in her password and the 2fa code using the POS Apple TV remote in the little time allotted. Not everyone is in a situation where they can have their atv and phone on the same wifi network. There's no reason other than laziness/planned obsolescence for Apple to not update the atv2 to properly handle 2fa.

 

[dannyyankou]

What woman? The writer is a man and the plaintiff appears to be a man as well.

My bad, I misread the name in the article as "Joy" and not "Jay".

 

[Ruskes]

i couldn't recover one of my apple id due to the fact that i lost my device that was used for 2FA.

Another annoying thing is that I used one device for 2FA for another account but then i don't get 2FA notifications for other devices that I actively use.

If you can’t sign in, reset your password, or receive verification codes, you can request account recovery to regain access to your account.
Account recovery might take a few days or longer, depending on the specific account information you can provide to verify your identity.