this post was submitted on 08 Nov 2023
519 points (90.5% liked)
Technology
59219 readers
3145 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Is there a single large company that even sends PGP email?
Sure, IF 1. you already have the user's password, and 2. a new code wouldn't be required/the previous code invalidated when initiating a new login session?
Like, I'm not saying that 2FA codes via email is secure, but you're implying that they are making a security hole via this - which I don't see.
Pgp, the greatest program never used by anyone
I used it. For about 10 minutes. Then I read the help files. Then I searched. Then I used it some more. Then I uninstalled it.
Yeah not following the logic. 2FA via email is insecure. Doesn’t matter where in the email. That person is confused about something.