• shortwavesurfer
    link
    fedilink
    English
    arrow-up
    25
    ·
    10 months ago

    And this is why smart people don’t use text message to factor authentication, if at all possible. App based OTP is much safer

    • PlantObserver@lemmy.world
      link
      fedilink
      English
      arrow-up
      6
      ·
      10 months ago

      I wish the companies that decide to only allow SMS 2FA (or none at all) will fucking realize this sooner rather than later

      • shortwavesurfer
        link
        fedilink
        English
        arrow-up
        4
        ·
        10 months ago

        Exactly. I don’t have a physical key because I would want one that has open source hardware and software.

        • /home/pineapplelover@lemm.ee
          link
          fedilink
          English
          arrow-up
          1
          ·
          edit-2
          10 months ago

          I believe Solokey is a brand that makes open source hardware keys.

          Edit: they might only be fido 2 level 1 and not level 2 like yubikey

          Edit 2: apparently there’s also openkey and nitrokey so those are some more options for you.

          • shortwavesurfer
            link
            fedilink
            English
            arrow-up
            1
            ·
            10 months ago

            Thanks, I will check them out, though, that only being level 1 could be a problem.