Exactly, it falls into the wrong hands, they steal a few phones, unlock them, find peoples unsecured notes, bank accounts, you name it.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
'GrayKey' iPhone Unlocking Box Used by Law Enforcement Shown Off in Photos
- Thread starter MacRumors
- Start date
- Sort by reaction score
Exactly, it falls into the wrong hands, they steal a few phones, unlock them, find peoples unsecured notes, bank accounts, you name it.
In two minutes in the bathroom you're not going to get locked out for longer than 5 minutes, to be locked out for DAYS someone will have to be trying to play around with the password for at least an hours to escalate it that far.
It doesn't even let you try to guess till the next timeout has expired, so you can't just instantly escalate it to days.
Easy, phones and safes don't have rights. Next.
For legal vs illegal search and seizure of persons and property, see 4th amendment. Government needs a warrant to search either.
For a remedial Civics refresher, behold the 9th Amendment:
"The enumeration in the Constitution, of certain rights, shall not be construed to deny or disparage others retained by the people."
You've heard the phrase 'limited government'? Who limits it? The people. How do the people limit it? By giving the government limited rights and binding those in a legal contract. In short, and the key philosophy you are missing in your understanding: People inherently have all the rights, and the critical yang to that ying, the government inherently has no rights. Rights have never been the government's to give.
[doublepost=1521190004][/doublepost]
No thats not going to solve it
My guess is they are somehow resetting atempts after each attempt
so its never reaching 10 atempts
Then use ‘ZzzzzzzzzzzzzzzzzzzzzzzzZz’, it’ll be near the end of the brute force queue. Of course, non alphabet characters would be even better.
hm.
looks like soon, apple will have to start killing its employees instead of firing them.
Not storing sensitive information defeats much of the purpose of a smartphone in the first place.
Yes, there are going to be further security holes. That doesn't mean this particular one isn't concerning or shouldn't be patched.
[doublepost=1521195485][/doublepost]
Your 5-yo could also set the iPhone or fire or destroy it with a hammer.
You know. "Banging away" and all that.
Maybe you need better friends?
Yes, yes, you've explained why iOS lets you set an alphanumeric password, but you haven't explained why you don't simply use one if that sort of thing matters to you.
(I use a 11-character password on my iPhone and a 14-character one on my Mac.)
So you'd rather they advertised their products with a nice shiny backdoor that's just ripe for every hacker and scammer in the world to go after?
Are you a cryptographer?
[doublepost=1521197268][/doublepost]
Because all nine million Israelites speak with a single mind?
Three things:
1. I believe the OS throws in shorter delays as you use up your passcode attempts, so after the first five you have to wait a minute before the sixth, then five minutes, so even to get to the lockout or automatic wipe stage takes quite some time.
2. You can always wipe the phone and restore from your last backup, the story of the woman recently who got locked out for 48 years, she didn't have a backup, so didn't want to wipe her phone.
3. What sort of a man goes to the bathroom without his phone?
on you iphone, really?
Yes, really. Mine has eleven characters. Most of the time, I just use Touch ID anyway.
[doublepost=1521197580][/doublepost]
Too long. Apple will have fixed it first.
(If someone random can reverse engineer it, Apple with plenty of resources can, too.)
Obvious solution: Use an 8 digit passcode, and don't repeat the same digits. Apparently they are trying for simple patterns first (which is why they could crack 987987 in 30 seconds instead of it taking one day).
it takes the iPhone itself 80 milliseconds to try each passcode, even if the attacker gets past any obstacles that Apple puts in the way, and doesn't take into account any time that the attacker needs to try the next key. That's one day for a million keys, 100 days for all possibilities of an 8 digit passcode.
And since the only _legitimate_ way to enter a passcode is to type it, I would strongly recommend that Apple waits say three seconds before checking the next passcode; that's about the time it would take you to re-enter the passcode if you got it wrong the first time.
it takes the iPhone itself 80 milliseconds to try each passcode, even if the attacker gets past any obstacles that Apple puts in the way, and doesn't take into account any time that the attacker needs to try the next key. That's one day for a million keys, 100 days for all possibilities of an 8 digit passcode.
And since the only _legitimate_ way to enter a passcode is to type it, I would strongly recommend that Apple waits say three seconds before checking the next passcode; that's about the time it would take you to re-enter the passcode if you got it wrong the first time.
The two Apple Stores near me are both in shopping centres where the real estate is most definitely not for sale. And while Apple is likely to get good rental deals in shopping centres because they draw customers to the location and improve the value, that's not going to help to get a good deal when buying the real estate.As if Apple would try to acquire one that way.
[doublepost=1521199237][/doublepost]
The iPhone needs 80 milliseconds to check each passcode. Doesn't matter how fast the iPhone is; faster iPhones do more encryption rounds so it always takes 80 milliseconds. Just fast enough to be unnoticeable when you enter the passcode. That's a million passcodes per day. Would take 1 million days to try everything or about 2,600 years.
Are all 9 million Israelis chip designers and software experts??
Intel chips with spectre and /meltdown is also designed with "experts" in Israel.
Link
I suppose that Apple chips have been compromised just like intel.
No amount of software can fix hardware .
The problem with experts , you need to question their loyalty especially in a country that sees enemies all around.
Just like the US asking Apple or RSA to create backdoors . How good are the good guys and who are they defending?
Information can make or break a country.
I do not see that option in iOS 8.3 on an older iPad. Sure, it may be in 11.x (I don't even see it in 10.3.1) but it should have been a feature forever. Having unlimited tries guessing the password WAS a feature for a few versions from iOS 1.0 to around iOS 6 but Apple removed it in 7.x I think. Maybe they put it back recently. But ever since they removed it, I stopped using the password feature because it just wasn't worth the risk of getting it locked out for 35 days.
If anyone has more details (weblinks are welcome) about what exact iOS versions support this feature, I would greatly appreciate the help!
[doublepost=1521202024][/doublepost]
Thanks...good to know.
I don't know the exact specifics because I wasn't going to test it.
But my sister locked herself out of her phone 2 years ago because she was a bozo and kept guessing passwords. Now, I don't know the details or timeframes (it's been 2 years) she did the guessing but her story and another parent's story scared me enough to never use that system.Even if it takes 30 minutes to 3 hours, it's still long enough for a child to play around with the device while I am not here (mowing the lawn for 1 hour, showering for 15 mins, etc.) I don't have my phone glued to my hip and neither do most people.
