7 Digit Password

0 views

Skip to first unread message

Tolomeo Tanguay

unread,

Aug 3, 2024, 4:18:56 PM8/3/24

to khakpicorpo

I was going to let someone use my old iPhone 5s, so I reset the data, and gave it to them after I checked to see that it started clean with the Hello screen. When they tried to use it, they found that on about the third page of the setup process, it asked for a 6 digit passcode. I had only used a 4 digit code, and that didn't work. I couldn't find any information on this, and was about to give up when I tried 000000. That worked and I can give back the phone with the problem solved, but I am curious what this is about. When the phone is wiped clean, I can't understand why a request for an undocumented password would happen. Did I miss something?

Same exact thing happened to me. I always had a four digit passcode. A reset was done when the phone was purchased off someone. I had a new phone so just used this as a secondary..no passcode needed to get in to it ever..long story short.new phone got stolen and i did a find my iphone for the wrong phone and it locked me out of secondary phone. Now I cant get in and am being told by Apple only solution is to restore and wipe phone of all its contents...contacts, pics etc. My backup was full so info had not been backed up in years and alot of needed info, bookmarks and pics on this phone. Its now asking me for a 6digit passcode...I never had six digit ..always four..nothing works..every time I try one it makes me wait another hour until i can try another...Apple does nothing for this issue if you call and spend hours on the phone..they actually made it worse by prompting me to delete the phone all together from my icloud account so now i have no info on the phone at all and no proof of it ever being connected to my icloud. HELP Obviously others have had this issue..i need that six digit passcode to use my phone but i only had a 4digit passcode. Not fair apple! Another set up for them to sell more products and phones if you ask me.

Nope, unless the new guy entered 6 zeros and didn't remember doing it, it just happened on its own. This does answer my question as far as whether I just missed something in the process. This just sounds like a glitch. I'll erase it again and double check.

This happened to me recently. I had never used a six digit passcode, but when I put a new SIM card in, it requested one. I had success with this fix, but you have to restore the phone. You will lose all your data unless you have it backed up to your computer or the cloud. I was giving my phone away, so I didn't mind restoring it to factory settings.

I suspect what happened is that the phone after the erase asked you to set up a passcode which by default would be 6 digits now. When you entered a 4 digit code, your old one, it did not allow it. You may have set 000000 as the new code. You can now change it to another 6 digit number (which I suggest) or even a 4 digit number by selecting options.

I am having the same issue. I had an old iPhone5 and just put in a new SIM card to give it to someone else, and it's asking me for a 6 digit passcode. I never had a 6 digit passcode, but did what dwhitebread did and put in 000000 just to see if it would work and it didn't. I can't get into the phone to set or change the passcode. The SIM card is brand new, so no other passcode was ever entered. Any thoughts?

When one erases a phone there is no passcode at all. Apple does not set one. There is no glitch. If you did not enter the 6 zeros the new guy did. While setting the phone from new, it does ask the new user to set up a passcode and that is what occurred here.

I'm designing a password reset system for my website/app right now and I'm not sure if the solution that I've reached could be considered suitably secure. The steps for resetting a password are as follows:

My reasoning for this method is that our app is being developed for young people (specifically children and teens) and so this password reset system should be as simple as possible. This system means that the user doesn't have to change the page they're on (as the form to provide the reset token is automatically displayed after the email is sent) and they don't have to open any link from the email meaning that only one browser tab is ever used (and it's the same tab).

And from what I can tell, another benefit to this system is that password reset token is never exposed to any logs as it's never included in any URLs, although it's still exposed in the email however that's not something I can get around.

6 digits means a number in the range from 000000 to 999999. This gives you one million different possible tokens. Let's assume you allow up to 10 token submissions per reset attempt before you consider it failed and block further attempts. This gives an attacker a slightly better chance of success than 0.001% for a reset attempt.

That seems like a low probability, but if the attacker can automate the process and there are no limits how often a password reset can be triggered, a successful attack becomes likely fast. If an attacker makes 10000 such attempts, he has a probability of success to reset at least one account of around 10%. Ramp this up to 100000 attempts and you we are talking of a success rate of around 64% to reset at least one account. This does not look secure at all anymore.

You also talked about simplicity of the process. If you do not want to use a complex character set for the token, that's totally fine. Length is much more important anyway. If you want to make the token stronger, I would recommend adding a few extra digits. But in the ends, it comes down to protect against brute-force attempts.

I'm attempting to reset all settings on my IPad Air. It initially asks for my password which I know but then it asks for another 4 digit password??? I don't ever recall setting up a separate 4 digit password. Why are there 2 different passcodes to do this? Any ideas?

This is my dilemna...it says I have to erase my device but on MY IPad, when I go to settings/reset, I HAVE to type in the 4 digit restrictions code which I do not have...??? which in turn won't allow me to reset anything

Guess....That's all you can do at this point. If you cannot remember or guess the Restrictions passcode, you will have to Reset your device to Factory Settings, and you can only restore it to a backup that was made prior to the time the Restrictions passcode was put on the device. If you do not have a backup that was made before the passcode was put on, you will have to rebuild it from "scratch".

I did back it up and my intention is/was to restore to factory settings anyway but it appears that I need this 4 digit code to reset??? "erase all content and settings" was what I was trying to do but like I said, it won't let me since I don't know the 4 digit code. Thanks for helping me!

I can no longer access my Dropbox account since the 6-digit code required to login is being sent to an email address that has been deactivated by my previous organization. I have read several posts in the community forums but so far none of them have been helpful.

I can no longer access my Dropbox account since the 6-digit code required to login is being sent to an email address that has been deactivated ... Is there a way to submit a support ticket or another way to authenticate my identity to recover my account?

Unfortunately, if you no longer have access to the email address associated with your account, you won't be able to gain access. The only possibility would be if you had an active device already linked to your account. Your best option will be to contact your previous organization and see if they're reactivate your email address, even temporarily, so you can receive the security code.

Unfortunately, I have already contacted my previous organization and reactivating my account is not an option. Does that mean its the end of the road? Surely there must be other ways to address this and authenticate my identify?

Did this post help you? If so, give it a Like below to let us know.
Need help with something else? Ask me a question!
Find Tips & Tricks Discover more ways to use Dropbox here!
Interested in Community Groups? Click here to join!

If you log in to the WEB IDE, you should be prompted with the option for 2 factor authentication and from there you can set this up. You need to install the authenticator app, and that generates the 6 digit code.

Two step was not enabled and I can log into the web IDE fine. When logging into the IDE VS and clicking enter when asked for a 6 digit number, the login still fails with the following error. This may be related to some other issue, such as being behind a firewall with ports blocked though.