Facebook locking you out of Messenger unless you connect your Google account or add a Pin

Bishop89 · Feb 2, 2024

This may be old but seems to have just rolled out this week in Australia for Android at least.

I cannot access messenger chats now without picking one of these options, and I don't really like any of them.

It'll be a cold day in hell before I give FB access to any google credentials.
And the other 2 don't seem like good options either. Storing on my phone means it'll take up space and I'll lose if I ever switch phones. Not that I keep important info stored in one of those chats but still, and a pin seems like an easy hack.

Can't they just leave things the fuck alone

/rant

Jubilant Duck · Feb 2, 2024

Whatsapp has a PIN system too. Personally I like the extra layer of security and recovery.

Linking Google credentials is a bullshit option though yeah.

Bishop89 · Feb 2, 2024

Jubilant Duck said:
Whatsapp has a PIN system too.

I haven't had to add any pins for whatsapp....
.... Yet...

PaulloDEC · Feb 2, 2024

Yep, annoying. I went with the Google option because I'm lazy.

Wrexis · Feb 2, 2024

Bishop89 said:
Storing on my phone means it'll take up space and I'll lose if I ever switch phones.

I think they're doing this to avoid being issued warrants for messages.

Google Maps did the same thing last year - your map history by default is no longer uploaded to the Cloud.

Wonky Mump · Feb 2, 2024

DELETED CONTENT

Arilian · Feb 2, 2024

Wouldn't you still require to connect through your Facebook account even with a 6 digit PIN added ?

Signal is, I think also using a 6 digit PIN.

julia crawford · Feb 2, 2024

Makes sense for them to push this without circumvention. The Google thing... i suspect that Facebook wouldn't actually have those credentials. I would have to figure it out better but it's likely that Google would just say "yes this person exists, here take this unique key from me that identifies them, now give me the messages to save" and the Facebook side of things wouldn't be able to do anything with that. Like how SSO works.

jesu · Feb 2, 2024

Just use the pin

Midas · Feb 2, 2024

What's the problem with the pin?

artsi · Feb 2, 2024

So... Add the PIN?

It's a legit security improvement.

Bishop89 · Feb 2, 2024

Midas said:
What's the problem with the pin?

artsi said:
So... Add the PIN?

It's a legit security improvement.

I don't know, I feel like it could easily be compromised. And I don't really want to add another password to memorise.

julia crawford · Feb 2, 2024

Bishop89 said:
I don't know, I feel like it could easily be compromised. And I don't really want to add another password to memorise.

looks like it's time to USE A PASSWORD MANAGER!!! GET ON IT!!!!!!

Bishop89 · Feb 2, 2024

julia crawford said:
looks like it's time to USE A PASSWORD MANAGER!!! GET ON IT!!!!!!

I do have one. I just.. am tired of these extra (forced) hoops lol

Wrexis · Feb 2, 2024

Bishop89 said:
I don't know, I feel like it could easily be compromised. And I don't really want to add another password to memorise.

Not any more than your debit/credit card PIN would be.

Midas · Feb 2, 2024

Bishop89 said:
I don't know, I feel like it could easily be compromised. And I don't really want to add another password to memorise.

Ah! Got it.

Jonnax · Feb 2, 2024

Bishop89 said:
I don't know, I feel like it could easily be compromised. And I don't really want to add another password to memorise.

Well if you prefer not to have a pin, then why do you care about being compromised?

It's like saying that you don't want a lock on your door because someone might copy the key and come in.

Guppeth · Feb 2, 2024

Might be a reaction to how often people get their accounts compromised. I'm not on FB, but my parents often get messages from friends' accounts after they've been stolen. At least this way, a scammer can't view chat history and use it to tell more convincing lies.

Rellodex · Feb 2, 2024

Facebook has been a sea of big bang theory gifs and ftp MMO advertisements for like five years now.

They could charge me to view photos and I wouldn't care.

Jubilant Duck · Feb 2, 2024

Bishop89 said:
I don't know, I feel like it could easily be compromised. And I don't really want to add another password to memorise.

more easily compromised than your current situation of having no pin?

Dr. Mario · Feb 2, 2024

6 digit pins are bullshit, like everyone doesn't just enter their birthdate.

Infinity Times Two · Feb 2, 2024

I don't understand, "Access chat history", don't they do that by themselves?

Guppeth · Feb 2, 2024

Infinity Times Two said:
I don't understand, "Access chat history", don't they do that by themselves?

It's a security thing. If you log into Messenger on a new device, you can't see history unless you use this system. It prevents account thieves from accessing a lot of private information

Bishop89 · Feb 2, 2024

Jubilant Duck said:
more easily compromised than your current situation of having no pin?

Not so much my FB account being compromised, but the pin number itself which someone could use against another account of mine. And sure, I can just make a completely unique pin that isn't shared against any other account I have on the internet, but that's just another thing to remember which I don't want to.

Bottom line, this should be an optional thing, not forced on me.

Guppeth · Feb 2, 2024

Bishop89 said:
Bottom line, this should be an optional thing, not forced on me.

I don't agree. Your chat history isn't just your private data, it's the private data of everyone you talk to. Adding an extra layer of security is a responsible thing to do.

Rosebud · Feb 2, 2024

Dr. Mario said:
6 digit pins are bullshit, like everyone doesn't just enter their birthdate.

I still use my first bank acc and card I did as a teen, so the password is my favorite pop idol birthdate

Bishop89 said:
Not so much my FB account being compromised, but the pin number itself which someone could use against another account of mine. And sure, I can just make a completely unique pin that isn't shared against any other account I have on the internet, but that's just another thing to remember which I don't want to.

Bottom line, this should be an optional thing, not forced on me.

Every single password/pin should be unique, use a manager

Bishop89 · Feb 2, 2024

Rosebud said:
I still use my first bank acc and card I did as a teen, so the password is my favorite pop idol birthdate

Every single password/pin should be unique, use a manager

Most are nowadays, but I'd have some really old ones which are probably similar with each other which I can't remember what they are.

Anyways I caved and made a pin.

Jubilant Duck · Feb 2, 2024

Dr. Mario said:
6 digit pins are bullshit, like everyone doesn't just enter their birthdate.

I, uh, came up with a new unique pin which I committed to memory (and saved in my password manager just in case) when FB messenger asked me to set a pin a few days ago.

Setting your birthdate as a pin is like using "password" as your password.

Jawmuncher · Feb 2, 2024

Imagine this is due to a lot of people getting their passwords stolen and then their account becomes something else.
Easiest way to add a bit more security and a way for someone to possibly recover their account back, as they're pretty bad about that if you're not famous.

Lampa · Feb 2, 2024

Bishop89 said:
Not so much my FB account being compromised, but the pin number itself which someone could use against another account of mine. And sure, I can just make a completely unique pin that isn't shared against any other account I have on the internet, but that's just another thing to remember which I don't want to.

Bottom line, this should be an optional thing, not forced on me.

Pretty sure you would need to log in to the FB account and then enter a pin to restore that chat history. It's a 2 factor authentication. You said you use a password manager anyway, so just store that pin there?

Psychotext · Feb 2, 2024

My main issue with this is that the only PIN I'm likely to remember (aside from my birthdate), is the one I'm using for my banking apps.

I really, really don't want to use that in this case. Password manager is useless as it takes forever for me to log into (as obviously I use a very strong passphrase for that).

JetEagle · Feb 2, 2024

This prompt also happened to me today! Took me by surprise and was trying to figure out if it was legit at first.

Lampa · Feb 2, 2024

Psychotext said:
My main issue with this is that the only PIN I'm likely to remember (aside from my birthdate), is the one I'm using for my banking apps.

I really, really don't want to use that in this case. Password manager is useless as it takes forever for me to log into (as obviously I use a very strong passphrase for that).

You will only be entering it the first time you sign in on a new device, not every time. Also, do you now use biometrics on a phone to access a password manager?

FrakEarth · Feb 2, 2024

I had this a week or so ago in the UK but don't remember seeing the Google option? Maybe a regulatory reason?

I'm in favour of them sorting out their messaging system(s) like Messenger and Whatsapp, and even DMs on Instagram and Threads, adding security etc. It seems like there's a lot of cross-over, where really they should probably be interoperable and share features. If this helps them decouple the useful utility of messaging from their awful social media services, all the better.

PSI Rockin’ Ω · Feb 2, 2024

As others have said, it's not giving Facebook your Google credentials. That's not how single sign-on works. And if they request access to any Google profile information, it will be clearly shown to you to approve when you establish the link— and you can back out.

This is basically just a form of multi-factor authentication and is a good thing.

Mindwipe · Feb 2, 2024

Psychotext said:
My main issue with this is that the only PIN I'm likely to remember (aside from my birthdate), is the one I'm using for my banking apps.

I really, really don't want to use that in this case. Password manager is useless as it takes forever for me to log into (as obviously I use a very strong passphrase for that).

You literally only need to do this when logging into a new device, not every time. PW manager seems a very reasonable use case for that.

Mindwipe · Feb 2, 2024

Infinity Times Two said:
I don't understand, "Access chat history", don't they do that by themselves?

No, this is to enable them starting to end-to-end encrypt your chat history so they can't see it (they can still see some metadata etc).

So you have to have some form of pin to unencrypt it (the Google option is so they can stick a text file with the decryption key in your Google drive instead).

Psychotext · Feb 2, 2024

Lampa said:
You will only be entering it the first time you sign in on a new device, not every time. Also, do you now use biometrics on a phone to access a password manager?

No, I'm not a big fan of biometrics (not least because it's trivial to get past face recognition / fingerprint readers on phones).

I was unaware this was a one time only thing though.

ZeoVGM · Feb 2, 2024

Bishop89 said:
Not so much my FB account being compromised, but the pin number itself which someone could use against another account of mine. And sure, I can just make a completely unique pin that isn't shared against any other account I have on the internet, but that's just another thing to remember which I don't want to.

Bottom line, this should be an optional thing, not forced on me.

No, this should definitely be forced on you. Your messages contain the data of the people you interact with. Not just you.

This is the most minor of inconveniences and only benefit you.

Dervius · Feb 2, 2024

Psychotext said:
(not least because it's trivial to get past face recognition / fingerprint readers on phones)

I'm not sure this is still really the case.

Early implementations were often fairly easy to fool, but the sensors have gotten more advanced and there are more robust checks in place now to determine the 'liveness' of a user.

joedick · Feb 2, 2024

I always thought these increased security measures were so companies could get your cell number and more easily link you to your data. I might be wrong but sadly this is the type of cynicism we need to have in the world today.

Psychotext · Feb 2, 2024

Dervius said:
Early implementations were often fairly easy to fool, but the sensors have gotten more advanced and there are more robust checks in place now to determine the 'liveness' of a user.

iPhones are probably good now, I've not tested them recently. My S23 is a joke (I work in IT security so I like to mess around with this sort of thing at times).

808s & Villainy · Feb 2, 2024

So add a pin? Y'all will complain about data leaks and complain about extra security

julia crawford · Feb 2, 2024

Dervius said:
I'm not sure this is still really the case.

Early implementations were often fairly easy to fool, but the sensors have gotten more advanced and there are more robust checks in place now to determine the 'liveness' of a user.

Yeah biometrics has gotten a fair bit better with the years. But honestly it's still working on a kind of data that i would never really consider reliable across time. Body parts change, get damaged, and you're relying on a level of execution that gets higher and higher preventing companies who don't have as many resources from providing that solution without depending on very successful vendors. Also you're handling a kind of data that is extremely personal, which raises a lot of concerns on data acquisition/treatment by those same vendors. Biometrics is honestly a dream of futures past and i would not expect or want it to become a dominant security feature. Even though... well yeah i use Face ID. Wish i didn't though!

Tanerian · Feb 2, 2024

Adding a pin... seems like they could hack it... as opposed to having no pin..

It's like someone forcing you to put a lock on your door, and you not wanting to because it seems like somebody could pick the lock.

Dalamar86 · Feb 2, 2024

Do everything you can to lock that up tight. I had two factor and still had my account accessed, had my business pages stolen, then they attached a bogus Instagram account that I have no access to and got it banned so my Facebook account would be suspended. Its been a nightmare and there's no way to get Meta to do a thing.

Teiresias · Feb 2, 2024

Are they making people do this even if they already have 2FA setup on their Facebook accounts?

BLEEN · Feb 2, 2024

My dad was forced to do something like this last year but it's (likely) due to the fact he's (kinda) famous as a weird stats baseball guru guy.

The fact you can't disable it or use your account otherwise fucking sucks. Had to use the Authenticator app and my dad is lost as hell with any of that 2FA shit. I set it up for him anyway (What, dad? Do you just wanna not use it anymore? 'Cause that's what you'll get!), but he's not happy lol

Dervius · Feb 2, 2024

Psychotext said:
iPhones are probably good now, I've not tested them recently. My S23 is a joke (I work in IT security so I like to mess around with this sort of thing at times).

Also work in security, and was soundly against biometrics until reasonably recently. As with most things, it's the balance of risk against utility. For most people's usecases the risk seems reaosnably know now the features have improved and the biometric information is being handled more securely.

What kinds of things are you doing to break the S23 out of interest?

MattB · Feb 2, 2024

People legit complain about everything it's crazy to me... Push out a pin and move on. It's honestly not that serious.

Facebook locking you out of Messenger unless you connect your Google account or add a Pin

What Are Ya' Selling?

What Are Ya' Selling?

Visited by Knack

Took the red AND the blue pills

What Are Ya' Selling?

Took the red AND the blue pills

What Are Ya' Selling?

What Are Ya' Selling?

Two Pieces

What Are Ya' Selling?

Crisis Dino

Took the red AND the blue pills

One Winged Slayer