Xylight (Photon dev)@lemmy.xylight.dev to Technology@lemmy.mlEnglish · edit-22 years agoGitHub to require 2FA on accounts by October 6, 2023github.blogexternal-linkmessage-square148fedilinkarrow-up1354arrow-down15file-text
arrow-up1349arrow-down1external-linkGitHub to require 2FA on accounts by October 6, 2023github.blogXylight (Photon dev)@lemmy.xylight.dev to Technology@lemmy.mlEnglish · edit-22 years agomessage-square148fedilinkfile-text
minus-squaresubtext@lemmy.worldlinkfedilinkarrow-up12arrow-down1·2 years agoIs it less secure than it could be? Yes. Is it better than no 2FA? Also yes. In the end if it doesn’t work for your security model, than more power to you. But if it helps to increase the security of the average Joe, it’s good advice.
minus-squareargv_minus_one@beehaw.orglinkfedilinkarrow-up0arrow-down2·2 years agoAllowing a smartphone access to anything sensitive is even worse advice. Smartphones are notoriously insecure.
minus-squarelibrary_napper@monyet.cclinkfedilinkarrow-up2arrow-down1·2 years agoYou’re right. Dont grant your smartphone access to your GitHub. Just give it one factor.
That’s bad advice
Is it less secure than it could be? Yes.
Is it better than no 2FA? Also yes.
In the end if it doesn’t work for your security model, than more power to you. But if it helps to increase the security of the average Joe, it’s good advice.
Allowing a smartphone access to anything sensitive is even worse advice. Smartphones are notoriously insecure.
You’re right. Dont grant your smartphone access to your GitHub. Just give it one factor.