this post was submitted on 04 May 2025

121 points (95.5% liked)

Mildly Infuriating

39405 readers

650 users here now

Home to all things "Mildly Infuriating" Not infuriating, not enraging. Mildly Infuriating. All posts should reflect that.

I want my day mildly ruined, not completely ruined. Please remember to refrain from reposting old content. If you post a post from reddit it is good practice to include a link and credit the OP. I'm not about stealing content!

It's just good to get something in this website for casual viewing whilst refreshing original content is added overtime.

Rules:

1. Be Respectful

Refrain from using harmful language pertaining to a protected characteristic: e.g. race, gender, sexuality, disability or religion.

Refrain from being argumentative when responding or commenting to posts/replies. Personal attacks are not welcome here.

...

2. No Illegal Content

Content that violates the law. Any post/comment found to be in breach of common law will be removed and given to the authorities if required.

That means: -No promoting violence/threats against any individuals

-No CSA content or Revenge Porn

-No sharing private/personal information (Doxxing)

...

3. No Spam

Posting the same post, no matter the intent is against the rules.

-If you have posted content, please refrain from re-posting said content within this community.

-Do not spam posts with intent to harass, annoy, bully, advertise, scam or harm this community.

-No posting Scams/Advertisements/Phishing Links/IP Grabbers

-No Bots, Bots will be banned from the community.

...

4. No Porn/Explicit

Content

-Do not post explicit content. Lemmy.World is not the instance for NSFW content.

-Do not post Gore or Shock Content.

...

5. No Enciting Harassment,

Brigading, Doxxing or Witch Hunts

-Do not Brigade other Communities

-No calls to action against other communities/users within Lemmy or outside of Lemmy.

-No Witch Hunts against users/communities.

-No content that harasses members within or outside of the community.

...

6. NSFW should be behind NSFW tags.

-Content that is NSFW should be behind NSFW tags.

-Content that might be distressing should be kept behind NSFW tags.

...

7. Content should match the theme of this community.

-Content should be Mildly infuriating.

-The Community !actuallyinfuriating has been born so that's where you should post the big stuff.

...

8. Reposting of Reddit content is permitted, try to credit the OC.

-Please consider crediting the OC when reposting content. A name of the user or a link to the original post is sufficient.

...

Also check out:

Partnered Communities:

1.Lemmy Review

2.Lemmy Be Wholesome

3.Lemmy Shitpost

4.No Stupid Questions

5.You Should Know

6.Credible Defense

Reach out to LillianVS for inclusion on the sidebar.

All communities included on the sidebar are to be made in compliance with the instance rules.

founded 2 years ago

MODERATORS

LillianVS@lemmy.world

STRIKINGdebate2@lemmy.world

Tenthrow@lemmy.world

121

Google requires me to find a "verification code" from my android device in order to log in; the device in question has already been wiped (factory reset). (sh.itjust.works)

submitted 5 hours ago* (last edited 5 hours ago) by throwawayacc0430@sh.itjust.works to c/mildlyinfuriating@lemmy.world

26 comments fedilink hide all child comments

There are no other options. This is even more stupid than the phone number verification thing. Attemping to logging to Google Play Store on that wiped device (which previously was logged in to the account) doesn't work either.

Luckily, this is a throwaway account, not much data of value was lost. FRP on the wiped device was also off.

But like, what is the point of this. Suppose, my phone got stolen. How am I supposed to log in to Google to initiate a remote wipe, if it ask for a verification code which is on the phone that the thief has?

Zero logic at all. 🤦‍♂️

Edit: And MFA was never enabled. Just to clarify.

top 26 comments

sorted by: hot top controversial new old

[–] yessikg@lemmy.blahaj.zone 3 points 1 hour ago

If you have more than one MFA method turned on, an option will show up to Try Another Way

[–] LodeMike@lemmy.today 3 points 1 hour ago

I also lost an account like this. Absolutely idiotic.

[–] CosmicTurtle0@lemmy.dbzer0.com 5 points 2 hours ago

I had this happen after I changed my unlock code and then locked myself out.

I imagine part of this is a conflict between their logic for reinstalling your settings and the fact that your credentials have been changed and you need to unlock them. The account restore workflow doesn't have a path for people who recently changed their passcode but need to log in.

I ended up abandoning the process and starting over. But gave me the opportunity to try a new launcher.

[–] MicrowavedTea@infosec.pub 27 points 5 hours ago (5 children)

The most annoying part is you may get this for a previous phone even if you have registered a new phone. If you really want to avoid Google's forced MFA the best way is to actually enable MFA and generate some airplane codes. Those can generally be used regardless of what Google asks at the time and you can store them offline or even memorize a couple. Probably not as secure but at least you won't get locked out.

[–] LodeMike@lemmy.today 1 points 1 hour ago

Also, Google will outright not allow you to log in even with all authentication methods if it doesn't like your IP or browser.

[–] LodeMike@lemmy.today 1 points 1 hour ago

You can't enable MFA without a phone number or a mobile device.

[–] njordomir@lemmy.world 13 points 4 hours ago

This is a good reminder. I recommend everyone grab their takeout data every now and then, but also, print out the 6 codes and put them in a safe deposit box, safe, bury them in a ziplock bag inside of a coffee can in your yard, etc. Hopefully it will be a waste of your time, but if you need them, they'll be there.

[–] Ibaudia@lemmy.world 2 points 2 hours ago

They're just called "backup codes" now. But yeah.

[–] JasonDJ@lemmy.zip 3 points 4 hours ago (2 children)

Airplane codes? Was that an autocorrect for API?

[–] MicrowavedTea@infosec.pub 3 points 3 hours ago

Apparently they're called backup codes now. I could swear they used to be called airplane codes (because they're offline ig). It's just some randomly generated 8-digit codes.

[–] unmagical@lemmy.ml 5 points 3 hours ago

No. When you enable 2FA Google gives you about 10 backup codes that will always work regardless of if you have access to your authenticator app.

[–] superfes@lemmy.world 31 points 5 hours ago (1 children)

If you're logged in on a computer you can deregister the device in your security settings and it will use the other available authentication types.

I've always been able to select another way to verify my login.

[–] throwawayacc0430@sh.itjust.works 11 points 5 hours ago (3 children)

I'm just gonna copy paste what I said to another user on another thread regarding this topic:

Okay, so I attempted to access it again. Its currently in a weird state of partial access.

I can "log in" but as soon as I try to access anything, say, Gmail, I get that screen again.

This is what the settings page looks like:

So its not totally locked out, but its not functional either, I'm not even on a VPN.

Notice, 2FA is off.

Then I click Gmail and get this:

I tap "more ways to verify" and get this:

I tap the only option, and it circles back to the previous screen.

[–] MrQuallzin@lemmy.world 31 points 4 hours ago (1 children)

They said to try again on a computer. All your screen shots are from a phone. You might get the same result, but we won't know until you attempt it.

[–] LodeMike@lemmy.today -3 points 1 hour ago (2 children)

on a computer

You mean a web browser? Those exist on mobile devices too.

[–] MrQuallzin@lemmy.world 1 points 10 minutes ago

A web browser is not a computer. A phone is not a desktop computer. Google (and most other large companies) keep many features restricted to their full websites, not mobile apps and mobile versions of their sites. For those who are used to/grew up with smartphones, tablets, and chromebooks, these tactics help to make it harder to leave their ecosystems as they aren't used to navigating desktop environments.

(Chromebooks do give desktop versions of websites by default, but they have helped reduce technological literacy in exchange for convenience)

[–] NarrativeBear@lemmy.world 1 points 12 minutes ago

On a computer or device that the device and browser is already signed into.

[–] Witchfire@lemmy.world 6 points 4 hours ago (1 children)

Have you tried reaching out to support?

[–] sunzu2@thebrainbin.org 9 points 3 hours ago

Lol... This is Google we are talking about

[–] janonymous@lemmy.world 3 points 4 hours ago

I had the same issue just a week ago after resetting my phone. As was said here I had to deregister my device in Google, because they didn't know that I had reset that device. For Google it was a complete new device in my hand, despite it still being the same phone after reset. That's why Google tried to make me F2A on what it thought was my old device.

Only after removing the old device in Google on my computer was I able to login on it again.

[–] spaghettiwestern@sh.itjust.works 7 points 4 hours ago* (last edited 1 hour ago) (1 children)

The company used to have it set up so in order to trigger an audio alert using "Find My Device" so you could actually, you know, find your device, you had to have that device in your hand and respond to a security prompt.

It is my firm belief that Google employees never use their own products.

[–] throwawayacc0430@sh.itjust.works 3 points 2 hours ago

Reminds me of the joke: "I cant see clearly enough to find my glasses" 💀

[–] kikutwo@lemmy.world 3 points 4 hours ago

I got the same directions to verify just yesterday. The directions aren't correct, and there's no way to do this as described.

[–] array@lemm.ee -1 points 3 hours ago (1 children)

That's why they ask you to back up the recovery codes. Learn how to use your devices

[–] red@sopuli.xyz 2 points 1 hour ago (1 children)

This thread is full of insane people with insane workarounds to an issue they are alerted upon when activating 2FA.

Keep the recovery codes in a safe place - not on the same device.

[–] LodeMike@lemmy.today 1 points 1 hour ago

It's well known that Google does not tell you that it's forcefully adding second factor to your account if you log into that account on an Android/iOS device/app.