Do you know how 2FA could be disabled on Lemmy without consent?locked
How could 2FA be disabled if you need 2FA in order to login to disable it and my free OTP+ is biometric protected?
You are viewing a single comment
How could 2FA be disabled if you need 2FA in order to login to disable it and my free OTP+ is biometric protected?
This is what I thought. I keep telling people they don't exclusively own their passwords / security tokens once they give it to a site. Salted hashes to obscure the pw don't even matter since the admin could also bypass that. Tanks for the validation.
And you better pray the website owner (websites in general, not Lemmy specifically) at least hashes your password.
yes, the more layers of security, the better, even if it is just a futile matter of time to consume the time of an ATP.