Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

elf69

macrumors 68020
Original poster
Jun 2, 2016
2,333
489
Cornwall UK
I think I known the answer but...

I have a customer at work with an ipad.
The mail app works and she can get her emails (yahoo).

She tried to login via browser and it rejects her password.
She cannot get recovery code via cell phone as that number is dead.
In uk if number not used for 6 months they cancel it, it got canceled as they did not know of the time limit.

Can I get password out the app?
I highly doubt it...
 
Could you maybe enable iCloud Keychain on the iPad and a Mac to sync them up, then find the password using the keychain access app on the Mac?
 
how would I do this please?

only mac available is my own work machine.
would I need create new user with same apple id as the ipad?
 
I don’t use iCloud Keychain, but it seems that if you turn it on and get it syncing to a Mac, you should be able to view the contents of the iCloud Keychain from there.

Someone may be able to chime in and say if this would work, or if I’m just full of it! :)

AFAIK, yes you would need a user signed in with the same Apple ID as the iPad to get iCloud Keychain setup.
[doublepost=1508167738][/doublepost]The other way would be to use something like SSLsplit to intercept and decrypt the password.

https://blog.heckel.xyz/2013/08/04/use-sslsplit-to-transparently-sniff-tls-ssl-connections/

I’ve successfully used this to retrieve a gmail password for a friend before. It was a good few years ago though, so I couldn’t detail the steps I’m afraid. I just used a tutorial at the time.
 
  • Like
Reactions: elf69
The keychain will not show passwords for the mail app. Only if the password was stored in the keychain via browser then it can be found.
 
The keychain will not show passwords for the mail app. Only if the password was stored in the keychain via browser then it can be found.
Sorry for the false hope then......I figured they’d be stored in iCloud Keychain for syncing across devices.

They must only be stored in a local Keychain then are they?

Looks like you may need to go the SSLsplit route. :)
[doublepost=1508178889][/doublepost]Are you absolutely sure it doesn’t sync mail passwords. A quick google brought this up:

E42040BD-B268-4316-9ECA-AE2A4BE49230.jpeg
 
Sorry for the false hope then......I figured they’d be stored in iCloud Keychain for syncing across devices.

They must only be stored in a local Keychain then are they?

Looks like you may need to go the SSLsplit route. :)
[doublepost=1508178889][/doublepost]Are you absolutely sure it doesn’t sync mail passwords. A quick google brought this up:

View attachment 725699

It syncs the passwords but they’re stored in hashed alphanumeric form. So you can’t actually see them in plain text.
 
It syncs the passwords but they’re stored in hashed alphanumeric form. So you can’t actually see them in plain text.
A hashed password would be useless. Keychain would need to store the actual password to allow the device to login to a service.
 
A hashed password would be useless. Keychain would need to store the actual password to allow the device to login to a service.

I’m guessing the mail app signs in and stores the auth code in the keychain. To be honest I always have to sign in to the accounts manually when I setup a new device.
 
I’m guessing the mail app signs in and stores the auth code in the keychain. To be honest I always have to sign in to the accounts manually when I setup a new device.
Ah...ok......so it stores a token rather than the password. Makes more sense now, thanks! :)

I’m sure my Keychain used to (don’t use mail on a Mac ATM) store my actual passwords, but they were for my own domain...not yahoo/google etc.

@elf69
Sorry to lead you down the wrong path mate. Definitely give SSLsplit a try though. :)
 
  • Like
Reactions: akash.nu
elf69, please tell me you found a solution to this problem as I am now in the same situation. I entered my Gmail credentials into the Mail app on the iPhone when I first bought it and never logged into the web Gmail app again, and after years I have forgotten the password. The phone still syncs with the account so I can read and send emails but I need to log into the account online and the only way to do this is to somehow "sniff" the password using the iPhone. I also thought it would be as easy as getting the password from the Keychain but discovered as you have that it is stored in a token. Any help from anyone would be great. I did see a post online that SSLsplit can do this, but I am wondering if anyone has actually succeeded with the Mail app itself, as the blog post was referring to Thunderbird on iOS, not the Mail app.
 
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.