In defense of care packages and mandatory authenticators

Reader Comments (Page 1 of 1)

1-11-2010 @ 2:48PM

Robert said...

In order to remove the authenticator from an account, you have to enter two codes from the authenticator. At least that's what it had me to do when I removed my iPod Authenticator in order to update it last time an update was available. This would make it impossible for a hacker to be able to remove the authenticator from the account unless they got the user to enter multiple codes, and even then they would probably still run out of time (the codes expiring) before they could get the authenticator removed. Anyone know if it's different for the removal of the physical authenticators?

Add your comments

Your comments:

Remember me

E-Mail me when someone replies to this comment

Please keep your comments relevant to this blog entry. Email addresses are never displayed, but they are required to confirm your comments.

When you enter your name and email address, you'll be sent a link to confirm your comment, and a password. To leave another comment, just use that password.

To create a live link, simply type the URL (including http://) or email address and we will make it a live link for you. You can put up to 3 URLs in your comments. Line breaks and paragraphs are automatically converted — no need to use <p> or <br /> tags.