I hate, hate, hate that companies force 2FA on me just because goddamn Susans use ‘password’ as their password on every goddamn fucking app. My passwords are safe. They’re long and they contain ALL THE CHARACTER CLASSES. Fuck off with your fucking 2fa!
No, they’re really not. No matter how good your password is, it can absolutely be compromised. If you use a password manager, just look at how often sites tell you that you “forgot” your password, despite knowing you haven’t.
Use 2fa for things that are absolutely vital. Whether you use it for your Blizzard account or Steam account is less important. (Though I’m pretty sure Blizzard has leaked passwords at least once, many years ago.)
For a few months, I had been getting emails from booking.com saying that I had forgotten my password. Probably scammers with my Gmail username futilely attempting to use the forgotten password link to get at stored payment info. Once I set up 2FA on the account, the emails stopped.
I was wrong. It wasn’t the forgotten password link. It was one of those sites that sent a login link instead asking for a password when you put in your username. That changed once I set up 2FA.
I hate 2FA tied to a phone number. It makes it really hard to change your phone number when you’ve got 150 random accounts tied to it. Let me put that TOTP in my password manager.
I hate, hate, hate that companies force 2FA on me just because goddamn Susans use ‘password’ as their password on every goddamn fucking app. My passwords are safe. They’re long and they contain ALL THE CHARACTER CLASSES. Fuck off with your fucking 2fa!
No, they’re really not. No matter how good your password is, it can absolutely be compromised. If you use a password manager, just look at how often sites tell you that you “forgot” your password, despite knowing you haven’t.
Use 2fa for things that are absolutely vital. Whether you use it for your Blizzard account or Steam account is less important. (Though I’m pretty sure Blizzard has leaked passwords at least once, many years ago.)
wtf are you talking about?
For a few months, I had been getting emails from booking.com saying that I had forgotten my password. Probably scammers with my Gmail username futilely attempting to use the forgotten password link to get at stored payment info. Once I set up 2FA on the account, the emails stopped.
How would that stop the emails, though?
I was wrong. It wasn’t the forgotten password link. It was one of those sites that sent a login link instead asking for a password when you put in your username. That changed once I set up 2FA.
Ah okay, yeah that makes more sense.
I hate 2FA tied to a phone number. It makes it really hard to change your phone number when you’ve got 150 random accounts tied to it. Let me put that TOTP in my password manager.