• headset@lemmy.world
    link
    fedilink
    arrow-up
    0
    ·
    edit-2
    5 months ago

    Fuck the 2 factor bullshit. I’ve lost many accounts just because I moved to another country and changed my number. I still know the password, It is my account but I can’t login just because the asshole who created 2 factor authentication never moved out of his parent’s basement.

      • jj4211@lemmy.world
        link
        fedilink
        arrow-up
        0
        ·
        5 months ago

        While true, other scenarios do come into play, like “I’m using a FIDO key but I dropped it down a storm drain”. Meaning you pretty much have to provide some recovery mechanism, since you can’t really require the user to have a backup device.

        • RecluseRamble@lemmy.dbzer0.com
          link
          fedilink
          arrow-up
          0
          ·
          edit-2
          5 months ago

          That’s why I don’t use hardware tokens. They are more secure but they can break or get lost/stolen. My authentication app supports backups.

          • jj4211@lemmy.world
            link
            fedilink
            arrow-up
            0
            ·
            5 months ago

            Indeed, but some “security” guys frown deeply about the private key ever leaving a specific hardware device, because the second it can be backed up they freak out that it could, theoretically, be stolen. It’s hardly a practical concern, but there’s a lot of security people that don’t care about practical considerations.

            • RecluseRamble@lemmy.dbzer0.com
              link
              fedilink
              arrow-up
              0
              ·
              5 months ago

              I see it more neutrally - the concern isn’t wrong after all. Security is always to be balanced against convenience.

              I consider being locked out for good so inconvenient that I’m willing to sacrifice a bit of security to avoid it. But everyone has to find what works best for them.