PUBLIC SERVICE ANNOUNCEMENT: 2FA NOW MANDATORY - YOU DON'T NEED A PHONE NUMBER FFS

[MASLV]

This is the first internet forum I know that uses 2FA, its just like work!

 

[Sphere of Many Eyes]

Got about 7 email code login errors in a row but 8th time is the charm!

 

[Camel]

This is the first internet forum I know that uses 2FA, its just like work!

The same people like Crispy whine about mandatory vaccines but enforce the 2FA.

 

[ds]

 

[Melcar]

Did they remove 2FA? It's been a while since I got an email and required to log back in.

 

[PorkyThePaladin]

No, the new Microsoft AI just uses your DNA and biometrics to authenticate directly.

 

[Sphere of Many Eyes]

I only ever need to do 2FA when I log on from my phone. Never had to do it on my comp for whatever reason.

 

[Peachcurl]

Maybe they removed the time limit for logged in devices?

 

[Frozen]

Next thing, they will ask to scan our penises and only average ones (35cm+) would be able to register.

 

[Zeriel]

Reminder: 2FA is false sense of security and only really "good" against people who use the same email and password everywhere on the internet. A unique password is enough to make 2FA 100% pointless

The whole password thing is itself a ridiculous blackhole of security theater. Increasingly "unique" passwords with symbols and numbers no person can remember and type in manually, so you just use a central password manager or the feature in browser, meaning you might as well just use one simple password anyway.

Thinking about it, it's baffling how many layers of complication and how many jobs are probably tied up into this thing that does nothing at the end of the day, just busywork to make people think something is secure. Sometimes I wonder if our lives would be better if we just got rid of 90% of technological "advancements".

 

[Tatochop]

Or just be like every boss I ever had and add "encryptme" to the bottom of your emails like anyone gives a flying fuck.

 

[KörangarTheMighty]

Yeah, thankfully it doesn't toss me out after a month anymore, so whatever changed and whoever is responsible for implementing it, thank you.

 

[Semiurge]

Reminder: 2FA is false sense of security and only really "good" against people who use the same email and password everywhere on the internet. A unique password is enough to make 2FA 100% pointless

The whole password thing is itself a ridiculous blackhole of security theater. Increasingly "unique" passwords with symbols and numbers no person can remember and type in manually, so you just use a central password manager or the feature in browser, meaning you might as well just use one simple password anyway.

Thinking about it, it's baffling how many layers of complication and how many jobs are probably tied up into this thing that does nothing at the end of the day, just busywork to make people think something is secure. Sometimes I wonder if our lives would be better if we just got rid of 90% of technological "advancements".

You can remember dozens of unique 12+ character passwords but it takes some practice. Some of it relies on muscle memory when you input the same strings with the same device over and over again.

 

[Infinitron]

Reminder: 2FA is false sense of security and only really "good" against people who use the same email and password everywhere on the internet. A unique password is enough to make 2FA 100% pointless

The whole password thing is itself a ridiculous blackhole of security theater. Increasingly "unique" passwords with symbols and numbers no person can remember and type in manually, so you just use a central password manager or the feature in browser, meaning you might as well just use one simple password anyway.

Thinking about it, it's baffling how many layers of complication and how many jobs are probably tied up into this thing that does nothing at the end of the day, just busywork to make people think something is secure. Sometimes I wonder if our lives would be better if we just got rid of 90% of technological "advancements".

As I mentioned earlier in this thread, I'm not sure all Codexers will be happy with the industry's alternative:

The next stage is to remove passwords entirely: https://fidoalliance.org/passkeys/

Google added support for this last month: https://blog.google/technology/safety-security/the-beginning-of-the-end-of-the-password/

Microsoft accounts now have new users go passwordless by default. Don't lose your phone!

 

[Perkel]

There are 2 choices:

1. If someone gets hacked or someone steals his account he should be just banned. You didn't secure your own password. Go start new account bitch.

2. Introduce billion annoying/failed/shitty versions of password protection that hopes user will remember but in the end he just uses some universal password manager that will get hacked sooner or later. You waste time which is money to tend to retards.

---

Why the fuck anyone would pick 2 over 1 ? Just ban stolen account, simple as that, no recovery at all.

 

[Melcar]

Why you no write to me anymore Codex?

 

[Peachcurl]

There are 2 choices:

1. If someone gets hacked or someone steals his account he should be just banned. You didn't secure your own password. Go start new account bitch.

2. Introduce billion annoying/failed/shitty versions of password protection that hopes user will remember but in the end he just uses some universal password manager that will get hacked sooner or later. You waste time which is money to tend to retards.

---

Why the fuck anyone would pick 2 over 1 ? Just ban stolen account, simple as that, no recovery at all.

Exactly. Just look up the attribute "stolen" in the account database and ban those. It's so simple!

 

[Russia is over. The end.]

Reminder: 2FA is false sense of security and only really "good" against people who use the same email and password everywhere on the internet. A unique password is enough to make 2FA 100% pointless

The whole password thing is itself a ridiculous blackhole of security theater. Increasingly "unique" passwords with symbols and numbers no person can remember and type in manually, so you just use a central password manager or the feature in browser, meaning you might as well just use one simple password anyway.

Thinking about it, it's baffling how many layers of complication and how many jobs are probably tied up into this thing that does nothing at the end of the day, just busywork to make people think something is secure. Sometimes I wonder if our lives would be better if we just got rid of 90% of technological "advancements".

As I mentioned earlier in this thread, I'm not sure all Codexers will be happy with the industry's alternative:

The next stage is to remove passwords entirely: https://fidoalliance.org/passkeys/

Google added support for this last month: https://blog.google/technology/safety-security/the-beginning-of-the-end-of-the-password/

Microsoft accounts now have new users go passwordless by default. Don't lose your phone!

Services that have switched to this shit often "don't work with Russia", so if you switch, I likely won't be able to log in.

 

[Perkel]

There are 2 choices:

1. If someone gets hacked or someone steals his account he should be just banned. You didn't secure your own password. Go start new account bitch.

2. Introduce billion annoying/failed/shitty versions of password protection that hopes user will remember but in the end he just uses some universal password manager that will get hacked sooner or later. You waste time which is money to tend to retards.

---

Why the fuck anyone would pick 2 over 1 ? Just ban stolen account, simple as that, no recovery at all.

Exactly. Just look up the attribute "stolen" in the account database and ban those. It's so simple!

This might come as a shock to you but if you see someone posting retarded ads of dildos you can safely ban them.
If someone steals your account and starts to post much like you then no value was lost and should continue to do so. Eitherway you were guilty of losing your password. At least someone new probably changed it :D

 

[Peachcurl]

All the dildo posts on the codex are made by authentic accounts.

 

[Camel]

There are 2 choices:

1. If someone gets hacked or someone steals his account he should be just banned. You didn't secure your own password. Go start new account bitch.

2. Introduce billion annoying/failed/shitty versions of password protection that hopes user will remember but in the end he just uses some universal password manager that will get hacked sooner or later. You waste time which is money to tend to retards.

---

Why the fuck anyone would pick 2 over 1 ? Just ban stolen account, simple as that, no recovery at all.

I don’t advocate to ban users for losing their passwords but punishing the entire forum with the 2FA because three retards had 123456 passwords was a stupid decision.

 

[Zeriel]

There are 2 choices:

1. If someone gets hacked or someone steals his account he should be just banned. You didn't secure your own password. Go start new account bitch.

2. Introduce billion annoying/failed/shitty versions of password protection that hopes user will remember but in the end he just uses some universal password manager that will get hacked sooner or later. You waste time which is money to tend to retards.

---

Why the fuck anyone would pick 2 over 1 ? Just ban stolen account, simple as that, no recovery at all.

I don’t advocate to ban users for losing their passwords but punishing the entire forum with the 2FA because three retards had 123456 passwords was a stupid decision.

It's always the whiniest, most annoying losers who had this happen to them too. Wasn't it darkpatriot that kicked off this whole thing? A normal person would go, "Oh shit my bad", not run to the admins.

 

[Clockwork Knight]

Some good things came out of it, though.

 

[Grauken]

Microsoft accounts now have new users go passwordless by default. Don't lose your phone!

Services that have switched to this shit often "don't work with Russia", so if you switch, I likely won't be able to log in.

I can't see any downsides

 

[Peachcurl]

There are 2 choices:

1. If someone gets hacked or someone steals his account he should be just banned. You didn't secure your own password. Go start new account bitch.

2. Introduce billion annoying/failed/shitty versions of password protection that hopes user will remember but in the end he just uses some universal password manager that will get hacked sooner or later. You waste time which is money to tend to retards.

---

Why the fuck anyone would pick 2 over 1 ? Just ban stolen account, simple as that, no recovery at all.

I don’t advocate to ban users for losing their passwords but punishing the entire forum with the 2FA because three retards had 123456 passwords was a stupid decision.

It's always the whiniest, most annoying losers who had this happen to them too. Wasn't it darkpatriot that kicked off this whole thing? A normal person would go, "Oh shit my bad", not run to the admins.

I notice everyone already forgot what happened before the introduction of 2fa...