Post ASnpv2XVAP6rVyXPV2 by haayman@todon.nl
(DIR) More posts by haayman@todon.nl
(DIR) Post #ASnpqUM4K0PAKr1IWm by stux@mstdn.social
2023-02-18T11:43:14Z
0 likes, 0 repeats
Ohh.. I just read that only paid #Twitter users can use (sms) 2FA :amaze: That’s bad.. security should be top priority and not something that comes with ‘premium’ :nkoFacepalm: You see, money is far more important to space Karen
(DIR) Post #ASnpv2XVAP6rVyXPV2 by haayman@todon.nl
2023-02-18T11:44:06Z
0 likes, 0 repeats
@stux alleen SMS, wat toch niet veilig is
(DIR) Post #ASnq0X1NGP1jV584GW by hungrybluedev@mstdn.social
2023-02-18T11:45:06Z
0 likes, 0 repeats
@stux That was a good prompt for me to set up 2FA here lol
(DIR) Post #ASnq3GmM6m1ZzjPTSS by expertenkommision_cyberunfall@mastodon.social
2023-02-18T11:45:37Z
0 likes, 0 repeats
@stux 2FA with SMS comes with some costs for the service provider?
(DIR) Post #ASnq8oPuTET7ljYPEO by stux@mstdn.social
2023-02-18T11:46:36Z
0 likes, 0 repeats
@expertenkommision_cyberunfall Yup but why don't they use G Auth for example :blobcatgiggle: like us, its free
(DIR) Post #ASnqKPvJMXnvHKm8Uy by expertenkommision_cyberunfall@mastodon.social
2023-02-18T11:48:43Z
0 likes, 0 repeats
@stux as defat as I remember (well) 2FA with Google (or other) authentificator (app) is possible
(DIR) Post #ASnqMzXPv3lCJYpJT6 by stux@mstdn.social
2023-02-18T11:49:10Z
0 likes, 0 repeats
@expertenkommision_cyberunfall Ahh good!
(DIR) Post #ASnqOBf6KPsOCozUie by Devonkiwi@mastodonapp.uk
2023-02-18T11:49:24Z
0 likes, 0 repeats
@stux It's worse. His argument is that SMS is *less* secure than other forms of 2FA, so only paying users can use it. 🤪
(DIR) Post #ASnqQEvp8tiKvSn8uu by stux@mstdn.social
2023-02-18T11:49:45Z
0 likes, 0 repeats
@Devonkiwi huh, that should be the other way around than? :blobcatgiggle: :flan_laugh:
(DIR) Post #ASnqWsqldiTMT5avEe by Devonkiwi@mastodonapp.uk
2023-02-18T11:50:59Z
0 likes, 0 repeats
@stux Yup. Why would you restrict a less secure system to folks who have given you their payment details?
(DIR) Post #ASnqiPVuXNd6xSKrUe by egooner@mastodonapp.uk
2023-02-18T11:53:03Z
0 likes, 0 repeats
@stux SMS 2FA is the 2FA poor relation in terms of security - but for many it is the only one that they use/understand.
(DIR) Post #ASnrHHANZ31rCktC5o by fringemagnet@mstdn.social
2023-02-18T11:59:22Z
0 likes, 0 repeats
@stux It's such a bs move, and it's going to create security problems for tons of users, considering how a lot of people aren't familiar with authenticator apps and security keys and they won't switch to another 2FA method when SMS-based 2FA is disabled for them.
(DIR) Post #ASnrJS4hyfhvcGH4Uq by stux@mstdn.social
2023-02-18T11:59:44Z
0 likes, 0 repeats
@Devonkiwi Good point!
(DIR) Post #ASnrT6kC8kDKM6HeBU by thinking_images@masto.ai
2023-02-18T12:01:29Z
0 likes, 0 repeats
@stux #Muskrat is a desperate (self proclaimed) genius. Next he'll charge for vowels, then consonants.
(DIR) Post #ASnrWrWmeivmJynj84 by saidaljabri@mstdn.social
2023-02-18T12:02:12Z
0 likes, 0 repeats
@stux I will not pay even one cent to #elon
(DIR) Post #ASntsiK1lMv437NjEG by Eetschrijver@mastodon.social
2023-02-18T12:28:31Z
0 likes, 0 repeats
@stux Playing advocate for the devil here (I can stand that megalomaniac no better than the next person): 2FA with authenticator apps will still be free of charge, and has better security than SMS. So this, for once, is not all bad.
(DIR) Post #ASntzRwP48OHGtXlRI by jfalava@mas.to
2023-02-18T12:29:45Z
0 likes, 0 repeats
@stux SMS 2FA in 2023 holy
(DIR) Post #ASnufm6kTZnhyqZ4ro by kikuchiyo@mstdn.social
2023-02-18T12:37:17Z
0 likes, 0 repeats
@stux Keep doing that Elon 😂 We need more users on Mastodon.
(DIR) Post #ASnuhnC3PXJjvV0ZzU by SrEstegosaurio@mstdn.social
2023-02-18T12:37:47Z
0 likes, 0 repeats
@stux As far a I've read it's only for SMS 2FA, you can still use TOTP or physical keys for free. So this might not be as bad as it seams. SMS 2FA is a security risk by itself.
(DIR) Post #ASnvrsEjcBraPxdK7c by MissingThePt@mastodon.social
2023-02-18T12:50:48Z
0 likes, 0 repeats
@stux https://mastodon.social/@MissingThePt/109883235328330343
(DIR) Post #ASo0ZqRk229vQKwJaC by osfast@mstdn.social
2023-02-18T13:43:34Z
0 likes, 0 repeats
@stux i think it's a good thing. Now people might be inclined to use more secure ways of MFA like an authenticator app or a yubikey
(DIR) Post #ASo2FK98c3YLMba3Lk by CTrevethan@mastodon.social
2023-02-18T14:02:13Z
0 likes, 0 repeats
@stux #TwitterMafia, pay us or get beaten up
(DIR) Post #ASo4zXZxCePYFkHyls by fauli1221@privex.social
2023-02-18T14:32:57Z
0 likes, 0 repeats
@stuxHonestly SMS based 2FA should be removed entirely due to the danger of sim swapping#twitter
(DIR) Post #ASo7gWL1tL2olVvkMi by dpp@mastodon.social
2023-02-18T15:03:11Z
0 likes, 0 repeats
@stux while I generally do not defend anything birdsite overlords are doing, forcing people who care about security to use a more secure method (sms is the worst) is a good thing
(DIR) Post #ASoIUTbBLlWWI1wep6 by alexpostfacto@tech.lgbt
2023-02-18T17:04:11Z
0 likes, 0 repeats
@stux According to #MelonHusk, it was being exploited by bots, costing Twitter $60M/year sending SMS to bots."Apparently".https://twitter.com/TitterTakeover/status/1626789383029358593
(DIR) Post #ASoZxHE28Cr3X7R7HE by gingermcferren@tech.lgbt
2023-02-18T20:19:58Z
0 likes, 0 repeats
@stux But App Based 2FA is still free?Why don’t we just get rid of all SMS based 2FA, and use App based ones instead. Even something like Authy is good with Encrypted backups that allow for syncing across devices.