Programmer Humor

31992 readers

133 users here now

Post funny things about programming here! (Or just rant about your favourite programming language.)

Rules:

Posts must be relevant to programming, programmers, or computer science.
No NSFW content.
Jokes must be in good taste. No hate speech, bigotry, etc.

founded 5 years ago

MODERATORS

AgreeableLandscape@lemmy.ml

cat_programmer@lemmy.ml

831

The OTP you want to use was already used (lemmy.ml)

submitted 11 months ago by Dirk@lemmy.ml to c/programmerhumor@lemmy.ml

36 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] redcalcium@lemmy.institute 8 points 11 months ago (1 children)

Which is why sms-based 2fa is useless if you're being targeted by a motivated hacker. If you're an important person (e.g. a government official, an exec on a big corp, a celebrity, etc) it's not safe to use sms-based 2fa. Heck, even if you're nobody, a hacker might decided to target you anyway to access the company you're currently working at, or because you have something they want (e.g. a desirable Twitter handle). One call to your cellphone carrier to complain about losing phone, with some social engineering skill to dupe the minimum wage call center worker who doesn't really care about being vigilant, and suddenly the hacker gain access to your cellphone number (doubly easier to with e-sim) and thus your sms-based 2fa.

[–] pineapplelover@lemm.ee 1 points 11 months ago

TOTP or hardware based tokens ftw