Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

What? So there's no added security by using TouchID as some here seem to think? So it's a pure convenience thing ... if so then well, I'm personally not very annoyed by having to enter my password when my hands are on the keyboard anyway.


I think the idea is that you can choose a very long and complex password, because you won't have to enter it so often once you enable TouchID. Without TouchID, most people are tempted to choose passwords that are easy and quick to type.


As the article says (my highlight):

> That line basically tells the sudo command that the Touch ID authentication module is sufficient to authorize the user


Depends how you configure PAM. You can have it set up so you need both touch and password if you really want...




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: