• This prevents an attacker from changing your Apple ID password or making changes to Face ID/Touch ID.

It doesn’t stop them if they use the emergency reset feature as this bypasses everything.

This seems like a lot of effort when you could just

1. Have a good password
2. Don’t be stupid and just have a phone unlock code longer than four digits

It’s definitely worthy the effort to save your years of documentation

If you’re dumb enough to have a short iPhone passcode, sure.

Edit: here’s a far more useful tip: disable control center access while the phone is locked.

We don’t need to

There’s a bug in iOS that lets you bypass screentime restrictions to reset the appleid password. It’s been posted about in some recent threads here.

Better advice is to use a long alphanumeric passcode instead of a short 6 digit pin, and be very careful nobody watches while you’re entering it.

Apple better has fix coming in the next few days. Totally unacceptable. I need to put in iCloud password to download free app but NOT to reset the whole freaking password? Come on now. Someone needs to be fired.