negativenull@piefed.world to Comic Strips@lemmy.worldEnglish · 7 days agoIncorrect Passwordmedia.piefed.worldimagemessage-square78fedilinkarrow-up11.06Karrow-down113file-text
arrow-up11.04Karrow-down1imageIncorrect Passwordmedia.piefed.worldnegativenull@piefed.world to Comic Strips@lemmy.worldEnglish · 7 days agomessage-square78fedilinkfile-text
minus-squarenegativenull@piefed.worldOPlinkfedilinkEnglisharrow-up8·7 days agoStatic password with good 2FA is the way to go.
minus-squareMr. Semi@lemmy.worldlinkfedilinkEnglisharrow-up7·edit-27 days agoI ran into some app a while back that required 2fa “text you a code” to log in every time. If you put in the wrong password, it still sent you the 2fa… Which it would accept for login. I’m honestly not sure if it ever even checked the password.
minus-squarenegativenull@piefed.worldOPlinkfedilinkEnglisharrow-up5·7 days agoI’ve seen an increase of sites that bypass passwords altogether and rely on 2fa (claude.ai was one I noticed the otherday)
minus-squaredual_sport_dork 🐧🗡️@lemmy.worldlinkfedilinkEnglisharrow-up10·7 days agoThat’s… not 2FA anymore. It’s reverted to 1FA, now with sprinkles on it.
Static password with good 2FA is the way to go.
I ran into some app a while back that required 2fa “text you a code” to log in every time.
If you put in the wrong password, it still sent you the 2fa… Which it would accept for login.
I’m honestly not sure if it ever even checked the password.
I’ve seen an increase of sites that bypass passwords altogether and rely on 2fa (claude.ai was one I noticed the otherday)
That’s… not 2FA anymore. It’s reverted to 1FA, now with sprinkles on it.
Those aren’t sprinkles.