this post was submitted on 11 Sep 2023
32 points (88.1% liked)

Privacy

31900 readers
561 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

Hey everyone, still on the iOS train for the time being, and want to enable 2FA for my Lemmy account. Currently the way this is done, it gives a link and that link default opens in Keychain, however I want to add the token to 2FAS. Anyone know how to do this?

you are viewing a single comment's thread
view the rest of the comments
[–] alcyoneous@midwest.social 1 points 1 year ago (1 children)

Any source for it as a back door? I hadn’t heard anything about that nor did a quick internet search turn up anything.

[–] cheese_greater@lemmy.world 1 points 1 year ago

That's technically conjecture but iMessage and WebKit and iCloud Calendar have had zero-day after zero-day zero-click exploits because they don't sandbox properly. And when it gets exploited , it goes to the very root of your phone. Its gets them everything as opposed to 3rd party messengers like Signal or Whatsapp that are limited to their own secured sandbox

This has happened over and over again and iMessage is often the common denominator, as it was most recently. At a certain point, you have to wonder if something thats turned on by default (opt-out) that uses your number and where you can't block unknown numbers from sending you shit isnt that backdoor that was requested years ago and likely persistently even now. Also your messages are likely full readable by Apple since iCloudBackup helpfully includes a key alongside it for easy decryption