That's a bit stupid, as it checks simple variants like that! It would probably take all of a few seconds to crack 0123456789, Lol
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
iPhone Cracking Methods Like GrayKey Box Can Guess a Six-Digit Password in 11 Hours on Average
- Thread starter MacRumors
- Start date
- Sort by reaction score
That's a bit stupid, as it checks simple variants like that! It would probably take all of a few seconds to crack 0123456789, Lol
Meh. I’ve got a 30-digit numeric. I’m not about to get qwerty over this little box. Back of a cocktail napkin math tells me that it would take about 60 billion times the age of the universe in order to crack it. The real problem isn’t this little black box, it’s the black rubber hose you got to worry about:
https://en.m.wikipedia.org/wiki/Rubber-hose_cryptanalysis
[URL]https://xkcd.com/538/[/URL]
No one can win here...
Now the box can beat even a 6 digit, Apple must add 8-digits or more to future iOS updates.... The only take-away from all this the more complex you make it, no one will remember, and be forced to write them down.
Which is a circle.... It's the same things we wanted to get away from.
Plus, the only reason users are running frantic is because we all store out personal lives on our phones now CC etc.. so in part users are also to blame for increased security.. and apps.
Its not all just about security. you may even say users are fueling the increased methods.
Now the box can beat even a 6 digit, Apple must add 8-digits or more to future iOS updates.... The only take-away from all this the more complex you make it, no one will remember, and be forced to write them down.
Which is a circle.... It's the same things we wanted to get away from.
Plus, the only reason users are running frantic is because we all store out personal lives on our phones now CC etc.. so in part users are also to blame for increased security.. and apps.
Its not all just about security. you may even say users are fueling the increased methods.
I use TouchID, plus 4 digit passcode... Aside from Dropbox app which doesn't really hold much info, you can have it...
My way of security is very different to the convenience of most users today.
This is gonna turn into a competition.. who can crack the fastest.
It would be useful if there was something along the lines of, if you set up fingerprints or face scans and you do not change them then they should be valid until changed, i'm sure there might need to be a few exceptions.
Also, I enjoyed seeing how people assume that their password is going to be near the last one guessed, it *can* take up to x days weeks months years but it could still be guessed way sooner.
Question: If the custom alphanumeric code keyboard had more rows so it at least showed the numbers and say some of the more common special characters would you be more inclined to use an alphanumeric password than the standard numeric only?
The irony is that the people that the government MOST needs to gain access to, are also those MOST likely very aware of cracking capabilities, and how to minimize them. So these capabilities most likely only benefit them for those with whom they have little to gain.
Yep. This
[doublepost=1523949354][/doublepost]
I think Samsung tried that on the Galaxy note 7
Yes, that's the issue they need to fix.
A 6 digit code is more than enough if you can only try to guess it for 10 times.
What is really important is to have a strong password for the iCloud account.
in the case of website remote access services like banking etc, a long complex unique password makes sense. In this case someone trying to hack into your phone needs to have your phone physically on them. Which means law enforcement or it was stolen (in which case you'd probably have locked it and/or erased it remotely before anyone gets near one of these boxes).
I think you need to balance how often you need to use an unlock code vs how complex and painful it is to enter it. Realistically you'd have to memorise an 8-10 character alphanumeric password because of course you can't access a password manager to enter it for you. and the more complex it is, the more of a pain it is for day to day use.
Are you worried that the FBI will confiscate your phone? Aren't you creating more pain for your daily use for something that isn't a real threat?
Also - I hope Apple figure out what that exploit is and block it. Being able to bypass the delays and 10-try lockout is worrying.
I think you need to balance how often you need to use an unlock code vs how complex and painful it is to enter it. Realistically you'd have to memorise an 8-10 character alphanumeric password because of course you can't access a password manager to enter it for you. and the more complex it is, the more of a pain it is for day to day use.
Are you worried that the FBI will confiscate your phone? Aren't you creating more pain for your daily use for something that isn't a real threat?
Also - I hope Apple figure out what that exploit is and block it. Being able to bypass the delays and 10-try lockout is worrying.
13 years to crack my information then. I will save you some time!
iMessage:
me: are you in later?
friend: yes
Photos:
photo of a car, a tree and something on my desk
Calendar:
Dentist appointment
Go for it!
iMessage:
me: are you in later?
friend: yes
Photos:
photo of a car, a tree and something on my desk
Calendar:
Dentist appointment
Go for it!
13 years to crack my information then. I will save you some time!
iMessage:
me: are you in later?
friend: yes
Photos:
photo of a car, a tree and something on my desk
Calendar:
Dentist appointment
Go for it!
Ah ha.... Now I know you have a friend, a car, a desk and a Dentist appointment I will be able to steal you identity!!!! Next I'll shall take over the world.
It's all a bit paranoia for the sake of paranoia!Ah ha.... Now I know you have a friend, a car, a desk and a Dentist appointment I will be able to steal you identity!!!! Next I'll shall take over the world.
All this article does is advise bad guys to use a stronger password!
yeah but you rarely ever have to type it. Majority of times it would be finger print/faceID. assuming its >=5s
and anything before that even a 4digit passcode would tke 13 years to crack coz they are so ****ing slow
10-12 numerical seems like a good compromise between security and practicality. 13 years is lengthy enough to stop having to worry so much.
Tell us more. FileVault is broken no matter the password length?
Tell us more. FileVault is broken no matter the password length?
After reading this article I have changed my passcodes on my iPad and iPhone from 6 digit numeric to 10 digit alphanumeric.
All my other passwords are around 30 characters (alphanumeric, upper, lower case) so why not keep the devices I use by far the most more secure.
All my other passwords are around 30 characters (alphanumeric, upper, lower case) so why not keep the devices I use by far the most more secure.
Apple would have lost all credibility (at least with a majority of people that value their security) had they been seen to be hacking into their own backdoor for the government.
There isn't much point in a secure enclave if whenever the government asks, Apple just unlocks it.
There isn't much point in a secure enclave if whenever the government asks, Apple just unlocks it.
I have a better solution: stop doing criminal things.
[doublepost=1523960803][/doublepost]
I much time per day are you typing passwords?
[doublepost=1523960803][/doublepost]
I much time per day are you typing passwords?
I have a better solution: stop doing criminal things.
[doublepost=1523960803][/doublepost]
I much time per day are you typing passwords?
I can be a law abiding citizen and still have no desire for people to have access to my devices. In the very least, I am not going to make it any easier for them.