Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Are you saying all of these systems enforce SMS-based 2FA rather than the sane choice of TOTP? That's unwise and unfortunate.


Many enforce 2FA through their own app, so TOTP is not an option.


It's the same plague, whether SMS or their own homebaked authentication scheme.


No, they enforce through their own crappy app which only works on few platforms.

To make things worse, if I install the app for my swiss bank on a different phone, I need to wait for snail mail to get the activation code.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: