Xylight (Photon dev)@lemmy.xylight.dev to Technology@lemmy.mlEnglish · edit-21 year agoGitHub to require 2FA on accounts by October 6, 2023github.blogexternal-linkmessage-square148fedilinkarrow-up1354arrow-down15file-text
arrow-up1349arrow-down1external-linkGitHub to require 2FA on accounts by October 6, 2023github.blogXylight (Photon dev)@lemmy.xylight.dev to Technology@lemmy.mlEnglish · edit-21 year agomessage-square148fedilinkfile-text
minus-squaresubtext@lemmy.worldlinkfedilinkarrow-up12arrow-down1·1 year agoIs it less secure than it could be? Yes. Is it better than no 2FA? Also yes. In the end if it doesn’t work for your security model, than more power to you. But if it helps to increase the security of the average Joe, it’s good advice.
minus-squareargv_minus_one@beehaw.orglinkfedilinkarrow-up0arrow-down2·1 year agoAllowing a smartphone access to anything sensitive is even worse advice. Smartphones are notoriously insecure.
minus-squarelibrary_napper@monyet.cclinkfedilinkarrow-up2arrow-down1·1 year agoYou’re right. Dont grant your smartphone access to your GitHub. Just give it one factor.
That’s bad advice
Is it less secure than it could be? Yes.
Is it better than no 2FA? Also yes.
In the end if it doesn’t work for your security model, than more power to you. But if it helps to increase the security of the average Joe, it’s good advice.
Allowing a smartphone access to anything sensitive is even worse advice. Smartphones are notoriously insecure.
You’re right. Dont grant your smartphone access to your GitHub. Just give it one factor.