Post ASoMmrOU1Csr7P1j1c by ishtar@catgirls.nya.gay
(DIR) More posts by ishtar@catgirls.nya.gay
(DIR) Post #ASoBIWxsJI7jZius3E by lauren@mastodon.laurenweinstein.org
2023-02-18T15:42:43Z
1 likes, 2 repeats
**** In windfall for hackers, #Twitter will disable 2 factor authentication by sms (text messages) if you don't pay them! ****Twitter has three methods of 2 factor authentication -- SMS text messages, authentication codes, and security keys. We all know that text messages are the least secure of these -- still, they are much better than nothing, and the exclusive choice of vast numbers of users of virtually all services offering 2fa.Now Twitter has announced that unless you pay them by joining Twitter Blue for $8 month, text message 2fa will no longer be available, and will even be switched off on existing accounts, even if no other 2fa option is currently enabled. In other words, they're saying that they will unilaterally disable 2fa on likely some vast number of user accounts -- unless you pay them.I have never heard of such an irresponsible and greedy scheme relating to account authentication in my life, but it is very Musk. -Lhttps://blog.twitter.com/en_us/topics/product/2023/an-update-on-two-factor-authentication-using-sms-on-twitter
(DIR) Post #ASoBvW7LOUpyF0w3sG by wintryKat@mastodon.lol
2023-02-18T15:50:20Z
0 likes, 0 repeats
@lauren Twitter is beyond screwed. Any service worth their salt BEGS users to flock to any MFA option they are comfortable with. Heck, many multiplayer games effectively ~pay YOU~ to enable any form of MFA. Why the heck would a company charge YOU to keep THEIR service secure?!Screaming!
(DIR) Post #ASoC3XzmIOgiNlE3Dk by GoodVibes7472@twit.social
2023-02-18T15:51:43Z
0 likes, 0 repeats
@lauren Wait, are people still ON that hell-site? Seriously?
(DIR) Post #ASoCT9N2TNGJXTJXJA by lauren@mastodon.laurenweinstein.org
2023-02-18T15:56:31Z
0 likes, 0 repeats
@GoodVibes7472 I take offense at that remark. Seriously. Who are you to make such a query in that manner? I discuss issues here and in my other venues that I view as important. Twitter is still immensely important to hundreds of millions of people and organizations that depend on it for emergency announcements, customer support, and more. What they do is important to the world, the choices Musk makes are important, and while I rarely tweet there anymore, of course I keep my account active so that I can monitor the situation there. I care about what happens to the people stuck there. Unlike some others, apparently.
(DIR) Post #ASoDNckUQrFms2DCQC by OldHound@masto.ai
2023-02-18T16:06:39Z
0 likes, 0 repeats
@lauren @GoodVibes7472 While I care about what happens to Twitter, I do think the company is in a death spiral. My biggest concern at this point is what will fill the void following Twitter’s demise, because I don’t see a viable endgame where Elon manages to not run Twitter into the ground.
(DIR) Post #ASoDbETJUT0JdAfOpE by nnscott@cityofchicago.live
2023-02-18T16:08:58Z
0 likes, 0 repeats
@lauren The phrase "very Musk" is correct here. There are other ways of phasing out 2FA by SMS (which I never use), but those would involve communicating with users, nudging them, making it worth their time, etc., the way my bank offered me some kind of bonus when it wanted me to move away from paper statements. Just cutting the service and leaving people exposed, to fend for themselves or adapt, is a total Silicon Valley Tech Bro move. Makes me even less interested in his cars.
(DIR) Post #ASoE3QLcvfUEZWVwWm by lauren@mastodon.laurenweinstein.org
2023-02-18T16:14:16Z
0 likes, 0 repeats
@nnscott Exactly. And Twitter turning off users' SMS 2FA when no other 2FA is enabled is beyond utterly irresponsible.
(DIR) Post #ASoEg8rVsH1xdPtIQq by lauren@mastodon.laurenweinstein.org
2023-02-18T16:21:18Z
0 likes, 0 repeats
I will add, if Twitter wanted to announce that SMS 2FA would not be available to new accounts starting such and such a date, that would be controversial, but not disastrous. But turning off SMS 2FA on *existing* accounts where no other form of 2FA is enabled, is beyond utterly irresponsible. And continuing 2FA by SMS for *paying* accounts just looks greedy beyond measure.
(DIR) Post #ASoEuiLsikrxl62ndQ by EWinterNM@mastodon.social
2023-02-18T16:23:54Z
0 likes, 0 repeats
All about the Benjamins. What he misses is that I'd NEVER give him payment info.
(DIR) Post #ASoFITFmVYDjsjWE88 by mjk_4mjk@mastodon.ie
2023-02-18T16:28:06Z
0 likes, 0 repeats
@lauren "Hardcore Engineering", not. "Nice, Twitter says I have to turn off text message 2FA but when I try to do that I get an error message.", https://mstdn.social/@maxkennerly/109883772634611719.The 'super geniuses' he brought over from Tesla are doing a real bang-up job, not. "Test Track - The Dangers of Tesla's Full Self-Driving Software", https://youtu.be/nHIgawTRCv8.
(DIR) Post #ASoFT26BoCjmqf4JcG by simon_lucy@mastodon.social
2023-02-18T16:30:11Z
0 likes, 0 repeats
@lauren I guess it goes something like, "SMS costs us money, so no freeloaders if they've paid that's ok, for now".
(DIR) Post #ASoFYhoe8JrBgBZH8q by lauren@mastodon.laurenweinstein.org
2023-02-18T16:31:09Z
0 likes, 0 repeats
@simon_lucy It also costs money to run data centers. It costs money to run a service. So, this is clearly BS.
(DIR) Post #ASoFnRNzV9cN4C7tUO by enigmatico@mk.absturztau.be
2023-02-18T16:34:07.213Z
0 likes, 0 repeats
@lauren@mastodon.laurenweinstein.org Sounds cool for all the hackers who are going to make gold stealing Twitter accounts and selling them on some shady forum in the TOR network.
(DIR) Post #ASoGU4SebwlwQ1dRCK by OldHound@masto.ai
2023-02-18T16:41:30Z
0 likes, 0 repeats
@lauren @simon_lucy Elon is penny wise and pound foolish. He traded a $5 billion ad revenue stream for a relatively tiny revenue stream from Twitter Blue. The 2FA debacle is really no different. The “savings” from not permitting SMS 2FA messages will just end up alienating more users, hastening the platform’s decline.
(DIR) Post #ASoGsJSyTR5JuGLPrk by lauren@mastodon.laurenweinstein.org
2023-02-18T16:45:49Z
0 likes, 0 repeats
@ishtar There are databases of stolen credentials waiting for 2FA to be disabled. Vast numbers of people will likely be hacked through no fault of their own. Your attitude suggests that you don't care about them at all, and that your understanding of ordinary users and their situations may be limited.
(DIR) Post #ASoGwK5s5DYX0iRyvQ by lauren@mastodon.laurenweinstein.org
2023-02-18T16:46:37Z
0 likes, 0 repeats
@bot Because most people use SMS. Especially for people without smartphones -- which is still enormous -- it remains the most viable option.
(DIR) Post #ASoHqky3LzLYZihe1Q by realcaseyrollins@social.teci.world
2023-02-18T16:57:09.799978Z
0 likes, 0 repeats
This is ridiculous. #2FA via #SMS is a standard feature. #ElonMusk needs to get a different income stream for #Twitter.
(DIR) Post #ASoIKdxlxd8tXRp5LU by lauren@mastodon.laurenweinstein.org
2023-02-18T17:02:13Z
0 likes, 0 repeats
@bot @realcaseyrollins Because at the very least maintaining security levels on *existing* accounts is the minimum standard anyone could reasonably expect in 2023 -- not just unilaterally exposing existing accounts to hackers because they refuse to pay a new fee. Elon can afford this.
(DIR) Post #ASoISyCUbPW0cWg7vc by lauren@mastodon.laurenweinstein.org
2023-02-18T17:03:44Z
0 likes, 0 repeats
@bot @realcaseyrollins You're missing the point. Listen carefully. These are accounts that *already* are protected by sms and nothing else. It's one thing to say new accounts can't use sms. It's another thing entirely to expose people to hackers if they refuse to pay because they currently use sms and likely don't understand or don't have the capability to use anything else.
(DIR) Post #ASoJ1skKsAOhq99i7M by realcaseyrollins@social.teci.world
2023-02-18T17:10:22.773333Z
0 likes, 0 repeats
You’re coming off as a bit of a stan here, but regardless you bring up a good point here; #ElonMusk (and the rest of us) are now learning just how hard it is to run something huge, with international reach, if you don’t have somebody else’s hand in your pocket. Especially if you had a sugar daddy before and he just leaves abruptly.
(DIR) Post #ASoJ4LENwEkYlMNr3g by _L1vY_@mstdn.social
2023-02-18T17:10:05Z
0 likes, 0 repeats
@lauren Just received my first notification that I must remove my #2FA on my account there 🙄
(DIR) Post #ASoJbLJ4g6CMYOJUQK by lauren@mastodon.laurenweinstein.org
2023-02-18T17:16:27Z
0 likes, 0 repeats
@ariadne @avuko Outside my area of expertise. Hopefully experts will be exploring this.
(DIR) Post #ASoJmadO1xajHEB3Ls by realcaseyrollins@social.teci.world
2023-02-18T17:18:48.625844Z
1 likes, 0 repeats
“They can just watch a video to figure it out if they’re dumb”
(DIR) Post #ASoK4u4EWASmlAT1H6 by lauren@mastodon.laurenweinstein.org
2023-02-18T17:21:40Z
1 likes, 0 repeats
@ishtar I fear you don't really understand the wide range of different levels of knowledge of the Twitter user universe.
(DIR) Post #ASoK5ZUYVCsdEg67Um by meso@asbestos.cafe
2023-02-18T17:22:16.501739Z
1 likes, 0 repeats
@bot @lauren @realcaseyrollins Based bot
(DIR) Post #ASoK7gFAN1PMksuBCC by kroner@seal.cafe
2023-02-18T17:22:38.324724Z
3 likes, 2 repeats
Or just stop using Tw*tter altogether
(DIR) Post #ASoKKwSNOyOQntPKuO by kroner@seal.cafe
2023-02-18T17:25:01.440933Z
4 likes, 3 repeats
mfw I learned there is more to life than horrible political takes, cancel culture and doom scrolling
(DIR) Post #ASoL0NnodSztUKCEUa by josh@social.rebased.network
2023-02-18T17:29:15.811979Z
1 likes, 0 repeats
Or Twitter can continue to pay $60M/year directly to the telcos that are taking the money by botting, so that people can use the least secure 2fa mode for "free"
(DIR) Post #ASoL6J8ksmoOlXodaC by AnungIkwe@spinster.xyz
2023-02-18T17:32:49.300495Z
1 likes, 0 repeats
@kroner @bot @lauren @realcaseyrollins Right. You have to have cat memes.
(DIR) Post #ASoL6Jct4kumGzuhY8 by kroner@seal.cafe
2023-02-18T17:33:36.151487Z
0 likes, 1 repeats
Those are certainly better than anything from Tw*tter
(DIR) Post #ASoLAOFDqZJTkrmsHw by Pashhur@mathstodon.xyz
2023-02-18T17:33:55Z
0 likes, 0 repeats
@lauren @bot @realcaseyrollins@social.teci.world or if they miss the email and haven't been using the account for a while, it's still open for hackers
(DIR) Post #ASoLqBy9sNmhqXjqYC by realcaseyrollins@social.teci.world
2023-02-18T17:41:53.891338Z
0 likes, 0 repeats
Yephttps://social.freetalklive.com/@realcaseyrollins/109864148252055158
(DIR) Post #ASoMmrOU1Csr7P1j1c by ishtar@catgirls.nya.gay
2023-02-18T17:47:07.550Z
1 likes, 1 repeats
@lauren@mastodon.laurenweinstein.org • some entity holds power over those who associate with it.• the entity lacks a moral compass and is driven only by the prospect of increasing its own power through the exploitation of those under it.• many become dependant on the continued existence and goodwill of this entity for their own wellbeing. if its tone were to change at all, it would be disastrous.• the entity cannot take control over you, its grasp is not inevitable. you must submit yourself to it willingly.• upon seeing this situation, you submit yourself to its power. you do nothing to ensure your own safety.no esoteric knowledge is required here. there's no tech jargon or infosec tinfoilhatting necessary to predict the current unfortunate situation.
(DIR) Post #ASoMpNLiBFMKnyviMa by hermit@hermitmountain.top
2023-02-18T17:52:57.486437Z
0 likes, 0 repeats
@ishtar @lauren I initially saw this post without context and it's remarkable how well it holds up for what I THOUGHT it was about (Abrahamic religion)
(DIR) Post #ASoMsvpmQG8Ccwgpm4 by ishtar@catgirls.nya.gay
2023-02-18T16:37:10.008Z
1 likes, 0 repeats
@lauren@mastodon.laurenweinstein.org >they are much better than nothinggiven the choice between having my account's authentication info sent over sms (controlled by telecom companies, analyzed for marketing, intercepted en masse by feds, vulnerable to multiple pretty easy attacks), and that not taking place, I'm picking the latter. twitter did people a favor here, and they're screwing over the ones dumb enough to pay for a blue checkmark. we should celebrate!
(DIR) Post #ASoN6Z3TuYAw28bCwi by futt@toot.pt
2023-02-18T17:56:04.030112Z
1 likes, 0 repeats
@bot @lauren @realcaseyrollins Using SMS for 2FA is retarded anyway, they should just drop it all together.https://sec.okta.com/articles/2020/05/sms-two-factor-authentication-worse-just-good-password
(DIR) Post #ASoN7MfRSCefu3jiPw by realcaseyrollins@social.teci.world
2023-02-18T17:56:11.194676Z
0 likes, 0 repeats
Aren’t you running #rebased on your instance?Maybe your instance is just highly insular.
(DIR) Post #ASoNDj0JJtSKusWwe8 by ishtar@catgirls.nya.gay
2023-02-18T17:54:50.592Z
1 likes, 0 repeats
@hermit@hermitmountain.top @lauren@mastodon.laurenweinstein.org it applies to many things, which was the point :p
(DIR) Post #ASoNGif92t2kj63fTk by realcaseyrollins@social.teci.world
2023-02-18T17:57:53.727193Z
0 likes, 0 repeats
Depends on the instance
(DIR) Post #ASoNHgVIYcomJvueSe by hermit@hermitmountain.top
2023-02-18T17:58:04.347837Z
0 likes, 0 repeats
@ishtar @lauren Yeah! Someone recently asserted to me that some people are just "ontologically submissive." I don't WANT to believe that, but maybe it's true.
(DIR) Post #ASoNYn3JSlrNYNyme0 by ishtar@catgirls.nya.gay
2023-02-18T18:00:25.179Z
1 likes, 1 repeats
@hermit@hermitmountain.top @lauren@mastodon.laurenweinstein.org ontologically submissive and breedable
(DIR) Post #ASoNbXZnSWr4QMU7sW by hermit@hermitmountain.top
2023-02-18T18:01:39.757673Z
0 likes, 0 repeats
@ishtar @lauren Ironically, the person who asserted it was breedable, yes
(DIR) Post #ASoNfVR7ME56wgJfVI by errante@rot.gives
2023-02-18T18:02:21.054757Z
1 likes, 0 repeats
@hermit @ishtar @lauren was it clora
(DIR) Post #ASoNh7xrb1h2jCPEQa by hermit@hermitmountain.top
2023-02-18T18:02:40.198367Z
0 likes, 0 repeats
@errante @ishtar @lauren Of coursh!
(DIR) Post #ASoNj1aCIIsNVyEzvE by realcaseyrollins@social.teci.world
2023-02-18T18:02:59.859699Z
0 likes, 0 repeats
I don’t think everyone should be forced to see my content. But they should be able to if they want to.
(DIR) Post #ASoQjamXiyf0XrygZE by nnscott@cityofchicago.live
2023-02-18T18:35:49Z
0 likes, 0 repeats
@lauren Yes. I suppose a lot of those users aren't very active and he just wants them off, or to facilitate the accounts being hijacked by someone who will be more active, e.g. by tweeting more robo-spam, which he clearly doesn't mind so long as it appears to boost engagement numbers.
(DIR) Post #ASoTxMdxO5Kwc1DinA by realcaseyrollins@social.teci.world
2023-02-18T19:12:48.898337Z
0 likes, 0 repeats
…I’m assuming that’s what the pubkey is? Granted I know nothing about #Nostr
(DIR) Post #ASoU6li1YzzyxSbhZY by lauren@mastodon.laurenweinstein.org
2023-02-18T19:14:12Z
2 likes, 0 repeats
@realcaseyrollins @parker @bot @kroner @GoodPerson Hi. Could you guys please move this discussion to another thread? It's really now unrelated to the OP. Thanks!
(DIR) Post #ASoVSJBAPxa6nb4bWS by realcaseyrollins@social.teci.world
2023-02-18T19:29:37.862674Z
0 likes, 0 repeats
You can still mute itI personally think it’d be good courtesy to grant you your wish but I cant guarantee that the others will do the same. In that case, muting would be a good option here.
(DIR) Post #ASoVYW1ZZXfQNKXsWG by lauren@mastodon.laurenweinstein.org
2023-02-18T19:30:24Z
1 likes, 0 repeats
@realcaseyrollins @parker @bot @kroner @GoodPerson I'm still getting replies relevant to the OP that I need to read and reply to as appropriate.
(DIR) Post #ASoVrZsvRX4dqnaf8y by realcaseyrollins@social.teci.world
2023-02-18T19:34:11.605155Z
1 likes, 0 repeats
I’m on #Soapbox, but I think #Mastodon works in this way as well; you should be able to mute certain branches of the thread and leave the rest alone
(DIR) Post #ASoWAzcvxVg5BrMtNI by lauren@mastodon.laurenweinstein.org
2023-02-18T19:37:19Z
0 likes, 0 repeats
@realcaseyrollins @parker @bot @kroner @GoodPerson In theory that should work, but of course everyone else on the thread would need to do the same thing as well to stay on the original topic. Maybe more will now that you've brought this up. But more generally, this kind of topic drift is something I try to avoid (going all the way back to ARPANET mailing lists and Usenet, where it also occurred!)
(DIR) Post #ASoWUkC13J1H77CBzU by realcaseyrollins@social.teci.world
2023-02-18T19:41:16.568256Z
1 likes, 0 repeats
Nope, it mutes the below repliesI learned that trick while navigating hellthreads back when #Husky was my primary client lol
(DIR) Post #ASoX5FLUhiEi9q2DRo by dogzilla@mastodon.scot
2023-02-18T19:47:29Z
0 likes, 0 repeats
@lauren I had deleted the app from my devices, but kept the account in case Twitter was fixed. Hearing this, I shut down the account. Bye Elmo!
(DIR) Post #ASoXjFTjd4Ou9YxobQ by lauren@mastodon.laurenweinstein.org
2023-02-18T19:54:45Z
0 likes, 0 repeats
@dogzilla I recommend against closing accounts, since it permits them to be reissued. Locking is much better in most cases.
(DIR) Post #ASocVXpB7egaliHKQC by parker@pl.psion.co
2023-02-18T20:48:39.400773Z
0 likes, 0 repeats
@bot @kroner @GoodPerson @realcaseyrollins Now I kind of understand what p was so pissed off about on New Year's 2022, there were so many side threads he had a hard time muting them all. Though he's still supposed to be the hellthread king and all, skill issue.
(DIR) Post #ASpI5uuSrjKoubDI9Y by dogzilla@mastodon.scot
2023-02-19T04:34:16Z
0 likes, 0 repeats
@lauren I agree, but my former Twitter account was almost exclusively used to read news and commentary and is anonymous. Also, how does someone retain 2fa on Twitter w/o paying random?
(DIR) Post #ASpIOPyM76yUSor5xg by lauren@mastodon.laurenweinstein.org
2023-02-19T04:37:38Z
0 likes, 0 repeats
@dogzilla Have to use auth app or security key.