←back to thread

New Apple security feature reboots iPhones after 3 days, researchers confirm

(techcrunch.com)
286 points joegibbs | 5 comments | 15 Nov 24 01:55 UTC | HN request time: 1.038s | source
Show context
SoftTalker ◴[15 Nov 24 02:32 UTC] No.42143463[source]
If this is true, then it's a trivial enhancement to make that a configurable setting. 72 hours could be the default, if your security needs are higher, you could turn that down to 12 hours, or even less.
replies(5): >>42143486 #>>42143699 #>>42144046 #>>42144580 #>>42145188 #
chatmasta ◴[15 Nov 24 03:22 UTC] No.42143699[source]
If this were configurable, I would make it 30 minutes and increase it if I noticed any inconvenience. But I doubt that I would. I already have my phone in permanent do-not-disturb (so a reboot causing delayed notifications wouldn't be an issue), and it's not like I mind entering my passcode instead of FaceID every 30 minutes.
replies(4): >>42143720 #>>42143792 #>>42144287 #>>42144673 #
bigiain ◴[15 Nov 24 05:55 UTC] No.42144287[source]
I don't trust FaceID (technically, I don' trust the cops with FaceID), so I'm entering my (6 digit) PIN every time I take my phone out of my pocket anyway. The only thing that'd make me hesitate to set this down to single digit minutes would be the risk of missed calls/notifications while the phone reboots.
replies(1): >>42144555 #
astrange ◴[15 Nov 24 07:05 UTC] No.42144555[source]
If you're outside the house that's less secure, because a security camera or a shoulder surfer can see your PIN.
replies(2): >>42144750 #>>42145072 #
1. curious_ralts ◴[15 Nov 24 08:54 UTC] No.42145072[source]
Graphene has a feature exactly for this which shows a shuffled unlock screen
replies(1): >>42145489 #
2. saagarjha ◴[15 Nov 24 10:10 UTC] No.42145489[source]
This sounds like an excellent way to make it even easier for people to watch you enter your PIN.
replies(1): >>42148462 #
3. cubesnooper ◴[15 Nov 24 16:36 UTC] No.42148462[source]
Once you’ve had the PIN scramble turned on for a while, it becomes second nature. I enter my GrapheneOS scrambled PIN about as quickly as the unscrambled PIN on my non‐GrapheneOS work phone. But it’s more of a defense against figuring out my PIN from the finger marks on my screen.

In environments where shoulder surfing is a concern, I prefer to use the multiple profiles feature: log out of my main profile (which is actually a secondary profile) to completely evict its keys from memory, and switch to a burner secondary profile containing no personal data, which unlocks with my fingerprint for convenience.

replies(2): >>42155557 #>>42161715 #
4. saagarjha ◴[16 Nov 24 09:51 UTC] No.42155557{3}[source]
I am curious what you do with a phone that has no personal data beyond, like, call people whose number you have memorized and maybe look something up
5. chatmasta ◴[17 Nov 24 03:15 UTC] No.42161715{3}[source]
Second nature or not, I’m not sure how this protects you against the security camera watching you enter the passcode. I guess you’re hoping it can’t read the digit on each key?