Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
jeffbee
on Aug 1, 2022
|
parent
|
context
|
favorite
| on:
Librarian's Letter to Google Security
Well, you can see the problem, right? Allowing attackers to bypass 2FA just by saying their phone is lost makes 2FA worthless.
nfriedly
on Aug 1, 2022
[–]
Yeah.. but an "I don't have my phone" button that just tells people to use their phone is equally worthless.
I don't know what the right answer is, but that certainly isn't it.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
