If proprietary app is better and more robust I am willing to try it and assess it myself.

  • charje
    link
    fedilink
    arrow-up
    4
    arrow-down
    8
    ·
    edit-2
    1 year ago

    I’m just migrating away from github because of this. Sr.ht is looking promising.

      • charje
        link
        fedilink
        arrow-up
        5
        arrow-down
        3
        ·
        edit-2
        1 year ago

        I know it is an unpopular opinion, but it is a huge headache in general. I don’t think the theoretical benefits (which make total sense) actually pay off in reality and are worth the extra headache. I’m not saying they should not have it at all, but it should be at least opt-out instead of forced.

        In the case of github, I think it is part of their long drawn out plan of data collection and proprietary lock down. Next they are going to require your house address and government ID. I feel better using an free and open source platform anyway.

        • maniel
          link
          fedilink
          arrow-up
          2
          ·
          1 year ago

          How exactly could a site collect more of your data through 2fa?

        • BehindTheBarrier@programming.dev
          link
          fedilink
          arrow-up
          1
          ·
          edit-2
          1 year ago

          Where does this even come from, passwords are increasingly insecure and adding another factor, especially authenticator codes, doesn’t even require you to give up a single new piece of personal information. The entire thing is just adding a local code that your program of choice remembers and uses to generate the one-time password. No data collection, no proprietary software. Other areas might be doing bad shit for all I know, but this change is entirely a forced security measure because people are too bad at passwords.

          After seing the frequent attempted logins on my Microsoft account, I’m “just” a lucky guess away from losing it if I do not have another thing blocking access.

        • aurele@sh.itjust.works
          link
          fedilink
          arrow-up
          2
          arrow-down
          1
          ·
          1 year ago

          Well, if you use a password manager such as bitwarden you can store your 2FA one ctrl-v away. Even if this is a less secure setup, that still prevents someone eavesdropping on your password from reusing it.

        • peregus@lemmy.world
          link
          fedilink
          arrow-up
          1
          ·
          1 year ago

          Unless you clear cookies constantly, you need to login just once in a while, where is this huge headache? Password get stolen, 2FA protect you from that.