Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

This is part of why I hate 2FA implementations that force a specific app. One of the sites I have to be able to log into added 2FA that requires a specific app, even more annoyingly, if setup with another app, the setup isn't outright rejected, it just produces the wrong totp.

It's much more convenient to have a yubikey+backup or something with a sane backup/sync system (eg password managers like Bitwarden).



Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: