ha, yeah lets replace passwords with codes sent via fuckin email. a service with security as a patchwork of bolt-on crap that barely works and is itself dependent on other services where security was an afterthought… like DNS.
If I get the reply from @melmi@lemmy.blahaj.zone right, the medium doesn’t matter. As in this scenario, you are telling the fake service yourself the secret code.
ha, yeah lets replace passwords with codes sent via fuckin email. a service with security as a patchwork of bolt-on crap that barely works and is itself dependent on other services where security was an afterthought… like DNS.
awesome!
If I get the reply from @melmi@lemmy.blahaj.zone right, the medium doesn’t matter. As in this scenario, you are telling the fake service yourself the secret code.
Email is more secure than SMS and we use that too!
haha yeah i totally forgot about that ridiculously insecure part!
i bet thats why they are attempting to retire the sms piece and push everyone to an ‘authenticator’ app