Yes, my phone is a single point of failure.
No, I don't normally have a problem not receiving text messages. I don't normally have a problem with anything, but that doesn't mean I couple my entire life to a single object. Authenticator apps would be more useful if they synced between devices. The last time I checked, both LastPass and Google didn't sync between devices. ----- Mike Hammett Intelligent Computing Solutions Midwest Internet Exchange The Brothers WISP ----- Original Message ----- From: "Matt Hoppes" <mattli...@rivervalleyinternet.net> To: "AnimalFarm Microwave Users Group" <af@af.afmug.com> Sent: Thursday, February 25, 2021 9:10:39 AM Subject: Re: [AFMUG] FB account deleted Your phone is a single point of failure? Do you generally not receive text messages? On Feb 25, 2021, at 10:02 AM, Mike Hammett <af...@ics-il.net> wrote: <blockquote> Single point of failure. ----- Mike Hammett Intelligent Computing Solutions Midwest Internet Exchange The Brothers WISP ----- Original Message ----- From: "Matt Hoppes" <mattli...@rivervalleyinternet.net> To: "AnimalFarm Microwave Users Group" <af@af.afmug.com> Sent: Thursday, February 25, 2021 8:57:49 AM Subject: Re: [AFMUG] FB account deleted Why do you guys hate to factor authentication I turn it on everywhere I can. Is it really that hard to get a text message and enter a six or eight digit number to know that your account is secure. Especially with the ability of most websites to remember the device you’re logging in from it’s usually a once in a great while thing. <blockquote> On Feb 25, 2021, at 8:45 AM, Steve Jones <thatoneguyst...@gmail.com> wrote: </blockquote> <blockquote> I do hate 2fa as well, I had an issue with a credit card payment to my cell carrier last week, so my service was shut off. So I go to log into my credit card portal, guess where the auth text got sent. But the cumbersome nature of it did force me to rethink my refusal to put alternate forms of payment on file and to actually open credit card statements. Fyi, percent cashback only pays off of you're cards are set to pay the balance automatically and not the default of minimum monthly payment. That default should be illegal too On Thu, Feb 25, 2021, 7:21 AM Mike Hammett < af...@ics-il.net > wrote: <blockquote> I only use 2FA when required. It's a pain in the butt. I do use a password manager with randomly generated passwords. ----- Mike Hammett Intelligent Computing Solutions Midwest Internet Exchange The Brothers WISP From: "Steve Jones" < thatoneguyst...@gmail.com > To: "AnimalFarm Microwave Users Group" < af@af.afmug.com > Sent: Wednesday, February 24, 2021 7:38:11 PM Subject: Re: [AFMUG] FB account deleted This got me thinking. What do you think the public's tolerance would be for full throated protection if it came at the cost of inconvenience, like you have to verify your identity to reset a password, but that also means a malicious actor would have to do the same. If one of the steps required human interaction, like going to a bank, or the dmv (never the dmv) or any authorized identity verification location. Almost every jail and police department in every podunk town has digital fingerprinting now. Most larger towns have businesses whose sole purpose is fingerprinting people. There are tons of ways to verify identity in person on top of the digital mechanisms attached to Nexus. Would the inconvenience force people to become more proactive to avoid the inconvenience, like actually use a legitimate password manager and 2FA? Would they maybe not click every link they see? I think its obvious that adoption, if voluntary would be virtually nil. But what if the big 3 apple, Google and facebook implemented it? Noting that those three also are the verification medium for a large percentage of everything else. It's a matter of time until identity theft is a multitrillion dollar industry, the vast majority is rooted in convenience over security. I can see even republicans backing funding for this type of thing considering the cost is going to be much less than the recovery costs of id theft People will drive 10 miles to get a wifi signal for facebook, it's really not outside the realm of reason for this to be a feasible process. Can this idea be patented? On Wed, Feb 24, 2021, 1:13 PM Seth Mattinen < se...@rollernet.us > wrote: <blockquote> On 2/24/21 06:17, Mark - Myakka Technologies wrote: > Well she got back in with help from my son. Still not sure what the > deal was. Guess I'll have to start looking at 1Password or LastPassword. Facebook actually supports decent 2FA options like TOTP and FIDO (i.e. yubikey) for 2FA. I'd recommend enabling one of those. -- AF mailing list AF@af.afmug.com http://af.afmug.com/mailman/listinfo/af_af.afmug.com </blockquote> -- AF mailing list AF@af.afmug.com http://af.afmug.com/mailman/listinfo/af_af.afmug.com -- AF mailing list AF@af.afmug.com http://af.afmug.com/mailman/listinfo/af_af.afmug.com </blockquote> -- AF mailing list AF@af.afmug.com http://af.afmug.com/mailman/listinfo/af_af.afmug.com </blockquote> -- AF mailing list AF@af.afmug.com http://af.afmug.com/mailman/listinfo/af_af.afmug.com -- AF mailing list AF@af.afmug.com http://af.afmug.com/mailman/listinfo/af_af.afmug.com </blockquote> -- AF mailing list AF@af.afmug.com http://af.afmug.com/mailman/listinfo/af_af.afmug.com
-- AF mailing list AF@af.afmug.com http://af.afmug.com/mailman/listinfo/af_af.afmug.com
