Enforcing two-factor authentication is bullshit!

  • 4
    why do you think that?
  • 24
    Correction: enforcing 2FA **via SMS** is utter bullshit. Not only is it privacy-invasive, but also actually insecure. Anything other than TOTP is a fucking joke.
  • 1
  • 6
    I think enforcing 2FA can be very reasonable

    but not through SMS what the hell???
  • 1
    We gave up on SendGrid cause for our application it does not provide single click login
  • 1
    @endor yeah, wasn't reddit source code stolen because someone spoofed a devs phone or something?
  • 1
    Making TFA optional I think is a better practice cus now I'd need to contact the client/owner every fucking time. And SMS... jeez they just gonna cry.
Add Comment