new | ask | show | jobs
EGreg 7 hours ago  [ - ]

I sent steve jobs (sjobs@apple.com) an email saying that MacOS should have an unspoofable dialog for the system password authorization, same way they have for DRM videos etc. I also suggested the user could choose a secret phrase or image to be displayed in the dialog during system setup. Never heard back. This was when Steve was alive and in charge. And to this day anyone can spoof the system password dialog and steal the system password…

zadikian 6 hours ago  [ - ]

I emailed him in 7th grade asking if Pages could automate bibliographies. In hindsight, EasyBib was good enough.

krackers 3 hours ago  [ - ]

>And to this day anyone can spoof the system password dialog and steal the system password

TouchID solves this in a sense.

airstrike 3 hours ago  [ - ]

Make it look like the TouchID isn't working and switch to password mode, boom. User password obtained

mcintyre1994 4 hours ago  [ - ]

I always wonder about how easy that would be to spoof, because it seems like it'd be trivial.

nine_k 3 hours ago  [ - ]

...but obtaining that phrase may be nontrivial.

mcintyre1994 3 hours ago  [ - ]

Sorry, I mean the current implementation seems trivial to spoof. I agree that doing something like your suggestion would make me feel much more comfortable about those logins.

niklasrde 6 hours ago  [ - ]

You mean what Vista introduced?