This post did not contain any content.

babble_endanger@freeradical.zone

This post did not contain any content.

starsider@valenciapa.ws

@babble_endanger same with oauth2 login when it prompts creating an account manually anyway

babble_endanger@freeradical.zone

@starsider I log into OSM with my Wikipedia account and OSM never remembers me >_<

jded@sky.c00lest-kats-on.ovh

@babble_endanger@freeradical.zone What especially sucks is signing in with a security key or passkey and still being prompted for another fucking factor of authentication. I'll do it anyway and have it set up like this but it's infuriating when those methods especially are meant to be very strong proof it is in fact you.

babble_endanger@freeradical.zone

@jded they signed in with their thing that can't be duplicated? Hm better check the email. Email is the gold standard. Nobody loses their email

jded@sky.c00lest-kats-on.ovh

@babble_endanger@freeradical.zone What makes this idea even funnier is how a fair handful of my friends and family keep actually losing their emails. My sister's Gmail uses my email as a recovery email so I can help her if she forgets her password or gets hacked (again) and every now and then she (in-person) asks me what the recovery code that Google just sent me for her email was because she locked herself out of the umpteenth time in a row.

twinkle@sweet.succubi.services

@babble_endanger@freeradical.zone the software industry is literally always going back and forth between implementing 2FA and going "so we already send an authentication code via (method) why don't we just use that"

twinkle@sweet.succubi.services

@babble_endanger@freeradical.zone the way worse illusion of choice tho..... asking you for email vs not asking you for email. you get called at 8 am anyway

painteddurian@mstdn.social

@babble_endanger
What are you talking about, they'll send you an SMS