I work in IT and understand that the tradeoff for good security is a reduction in convenience. But this really reads like deliberate punishment. I get the same sense on Apple’s platforms. Wanna change your cloud password? Prove you know the unlock code to a device that you no longer own and haven’t had in a year. This is especially awesome when your employer makes you change passcodes on a regular basis and you have no idea what you used back then.
Yeah, they VIP that I was helping when I encountered the above issue was not using a pw manager and the device in question had been replaced (by the org) a bit more than a year ago. We also had an insane pw policy at the time that made users change them every three months, so good luck remembering. So grateful that madness is over.
That doesn’t help them recover their cloud account for which they forgot their password. They still need the unlock code of the device that was replaced >1y ago.
Ran into this issue literally yesterday. The wife went back to iOS after giving Android a try for four years (I don’t get why, but I try not to judge).
Anyway, she couldn’t remember her Apple ID and had to pull out the phone she hasn’t used in years to recover her account. Thankfully she was smart enough to charge the battery to 50% every few months. Otherwise it would have gone bad and she would have been fucked; literally would have had to pay a tech hundreds to replace a battery for a phone she no longer uses, just to reset a simple password.
I understand and appreciate the need for good security, but this is beyond ridiculous.
I work in IT and understand that the tradeoff for good security is a reduction in convenience. But this really reads like deliberate punishment. I get the same sense on Apple’s platforms. Wanna change your cloud password? Prove you know the unlock code to a device that you no longer own and haven’t had in a year. This is especially awesome when your employer makes you change passcodes on a regular basis and you have no idea what you used back then.
My password manager keeps a history, and it has saved my bacon twice now.
Yeah, they VIP that I was helping when I encountered the above issue was not using a pw manager and the device in question had been replaced (by the org) a bit more than a year ago. We also had an insane pw policy at the time that made users change them every three months, so good luck remembering. So grateful that madness is over.
Cold spare production floor machines. I’m sure there’s a better way, but you build the machine and put it on a shelf maybe 2 years before you need it.
That doesn’t help them recover their cloud account for which they forgot their password. They still need the unlock code of the device that was replaced >1y ago.
Which one are you using?
Onenote
Nice
https://github.com/dani-garcia/vaultwarden
https://bitwarden.com/search/?q=history+of+password&type=help
Ran into this issue literally yesterday. The wife went back to iOS after giving Android a try for four years (I don’t get why, but I try not to judge).
Anyway, she couldn’t remember her Apple ID and had to pull out the phone she hasn’t used in years to recover her account. Thankfully she was smart enough to charge the battery to 50% every few months. Otherwise it would have gone bad and she would have been fucked; literally would have had to pay a tech hundreds to replace a battery for a phone she no longer uses, just to reset a simple password.
I understand and appreciate the need for good security, but this is beyond ridiculous.