• orclev@lemmy.world
    link
    fedilink
    English
    arrow-up
    23
    ·
    9 months ago

    This is a little short on details, but so far I hate everything I’m reading. SMS based OTP is already the worst least secure form of OTP and now they want to make that P2P? It doesn’t even mention if the OTP is sent encrypted in any fashion, it only warns that relays can view the phone numbers of OTP recipients.

    • rottingleaf
      link
      fedilink
      English
      arrow-up
      9
      arrow-down
      3
      ·
      9 months ago

      Sadly security gets accepted only in its worse-than-nothing forms by the masses. I suspect the only reason it gets accepted at all is because the average normie wants to do something exactly not in the same way as those annoying nerds and asocial types who are not on Facebook\Twitter\whatever recommend.

      That’s like Apple-style innovations.

      First something really exists and is really cool under Linux\FreeBSD\etc in environments for X11. Normies say “get off me with this haxor shit, heresy, my honor is called Apple loyalty, MS above all”.

      Then Apple stuffs some shiny cut down unusable variant of the same into their GUI. Normies say “ow, how innovative, shut up and take my money”.

      Then MS stuffs something scary as shit, buggy and ugly, remotely reminiscent of the same feature. Normies say “look how good Windows NN has become, what, which year of Linux desktop it is again, sure you don’t have anything as good”.

      That doesn’t belong here and I’m a bit butthurt, but I won’t delete it after typing it.

  • loki@lemmy.ml
    link
    fedilink
    English
    arrow-up
    2
    ·
    9 months ago

    This is going to lead to a lot of harassment and stalking. The sender or receiver could use the numbers to find people on whatsapp, signal or any other social media app that allows users to link their contacts.

    This is scarily creepy.