@grynspan OK, so the workaround is to shutdown when you’re not physically at the computer.
@grynspan This sounds like the worst Mac security bug I’ve ever heard of. You’re basically basically that Apple has a backdoor to FileVault.
@grynspan Is there anywhere in the UI that shows, after setup, whether your login password can be changed via Apple ID?
@grynspan So you’re saying Apple doesn’t have the FileVault key but someone at the computer can access the disk by changing login password?
@grynspan So the only way to check whether Apple has your recovery key is to fail a login and see whether it offers to reset for you?
@grynspan Surprised wow. If it just says “A recovery key has been set” hopefully that means I didn’t share it with Apple…
@grynspan Wow.
@grynspan It’s a separate option.