this post was submitted on 28 Jan 2025
48 points (85.3% liked)

Ask Lemmy

27813 readers
1280 users here now

A Fediverse community for open-ended, thought provoking questions

Rules: (interactive)

1) Be nice and; have funDoxxing, trolling, sealioning, racism, and toxicity are not welcomed in AskLemmy. Remember what your mother said: if you can't say something nice, don't say anything at all. In addition, the site-wide Lemmy.world terms of service also apply here. Please familiarize yourself with them

2) All posts must end with a '?'This is sort of like Jeopardy. Please phrase all post titles in the form of a proper question ending with ?

3) No spamPlease do not flood the community with nonsense. Actual suspected spammers will be banned on site. No astroturfing.

4) NSFW is okay, within reasonJust remember to tag posts with either a content warning or a [NSFW] tag. Overtly sexual posts are not allowed, please direct them to either !asklemmyafterdark@lemmy.world or !asklemmynsfw@lemmynsfw.com. NSFW comments should be restricted to posts tagged [NSFW].

5) This is not a support community.
It is not a place for 'how do I?', type questions. If you have any questions regarding the site itself or would like to report a community, please direct them to Lemmy.world Support or email info@lemmy.world. For other questions check our partnered communities list, or use the search function.

6) No US Politics.
Please don't post about current US Politics. If you need to do this, try !politicaldiscussion@lemmy.world or !askusa@discuss.online

Reminder: The terms of service apply here too.

Partnered Communities:

Tech Support

No Stupid Questions

You Should Know

Reddit

Jokes

Ask Ouija

Logo design credit goes to: tubbadu

founded 2 years ago
MODERATORS
candyman337@lemmy.world
Bluetreefrog@lemmy.world
TheSaneWriter@lemm.ee
TheSaneWriter@lemmy.thesanewriter.com
candyman337@sh.itjust.works
Asudox@lemmy.world
lemmy_bot@lemmy.world
beefbaby182@lemmy.world
asudox@discuss.tchncs.de
ModeratorCan@lemmy.world
shinigamiookamiryuu@lemm.ee
neidu3@sh.itjust.works
KaneLivesInDeath@lemmy.world
48
How do you feel about mandatory 2fa policies? (lemmy.dbzer0.com)
submitted 4 days ago by IDKWhatUsernametoPutHereLolol@lemmy.dbzer0.com to c/asklemmy@lemmy.world
45 comments fedilink hide all child comments
 

Especially for personal accounts.

I get why a corporation would require it for employees...

But I hate it when Apple, Samsung, etc. are forcing you to have 2fa, especially by requiring a phone number.

Side note: Bitwarden will be requiring email verification codes starting in February 2025, for those who haven't enabled 2fa yet (see my Post in YSK). Most people store their email credentials in their password vault... so a lot of people are gonna get locked out of their bitwarden vaults. I kinda hate it, especially on such sort notice (less than 10 days).

you are viewing a single comment's thread
view the rest of the comments
[–] helloworld55@lemm.ee 6 points 3 days ago

I get why 2FA is adopted so widely: companies need to cover they asses. Even if you don't care if a hacker gets ahold of your password for a flash game website, that password leak could cause issues later on, and opens the website up to responsibility.

What really bothers me more, is that 2FA is relying so heavily on phone numbers, which is an extremely flawed security system. At least some of the larger companies are open to using authenticator apps, or sharing the private key for storing in a database. But so many websites do 2FA by "requiring a phone number", which just puts a lot of security responsibility on the phone carrier now. The user doesn't really gain any extra responsibility for having good opsec, because phone companies fuck up all the time and assign phone numbers to new sim cards all the time, often on concerningly small amounts of information