i have a question- why isn’t there a separate password for unencrypting and unlocking?
- 128-bit password that you need to enter to boot the phone
- once booted, unlocking just requires a 5-digit pin and has nothing to do with encryption
- ten failed attempts shuts down the device, and then you need the long password to boot
flashing another image that allows unlimited pin code attempts would be irrelevant, because you would need to unlock the storage with the long password before booting.
the password could be randomly generated at install. users would of course write down the 13+ character password, but as long as they don’t carry it with their phone, that’s fine. if they lose that password, they lose their data.
of course, the average user wouldn’t want to do this, but SFOS users are not average users. it would be opt-in, but it would be fairly convenient and, as far as i can tell, would actually do something.