Im concerned with the fact that the 2FA by way of text only kicks in half of the time. Allowing me 1FA access sometimes.
At what point?
Topic: Blockchain.info wallet bug allows to change the first password without secondary (Read 4240 times)
May 09, 2013, 09:22:31 AM
At what point?
May 09, 2013, 08:57:50 AM
Im concerned with the fact that the 2FA by way of text only kicks in half of the time. Allowing me 1FA access sometimes.
May 09, 2013, 08:56:13 AM
So can anyone confirm this? Is it a bug or a feature? Is there anyway to get it fixed as it's critical if you want to use it as "monitoring only" wallet for several users?
May 09, 2013, 06:42:01 AM
Maybe this has been already found and discussed, but...
I think I found a bug in Blockchain.info wallet. I reported this several days ago using their customer support system but got no reply (even confirmation that my request was accepted).
If you enable a second password in your wallet, you can still change the main password without entering the second one. When you try to change your main password you are asked for a secondary but you can just click "Cancel" and continue: you will see a standard "Confirm Password Change" and if you confirm the main password will be changed. As simple as that.
Edit: It's even worse, you can put anything as a secondary password, you can still proceed with changing the main password. I don't get it. Maybe it is as planned?
I think I found a bug in Blockchain.info wallet. I reported this several days ago using their customer support system but got no reply (even confirmation that my request was accepted).
If you enable a second password in your wallet, you can still change the main password without entering the second one. When you try to change your main password you are asked for a secondary but you can just click "Cancel" and continue: you will see a standard "Confirm Password Change" and if you confirm the main password will be changed. As simple as that.
Edit: It's even worse, you can put anything as a secondary password, you can still proceed with changing the main password. I don't get it. Maybe it is as planned?
Jump to: