Please don’t enable 2FA - eviltoast

2FA in lemmy doesn’t work reliably yet. Please don’t enable it or you will almost certainly get locked out.

Note: it makes me sad to post this.

  • Alex@infosec.pub
    link
    fedilink
    English
    arrow-up
    3
    ·
    1 year ago

    Once it does work, will it allow apps like authy or will I have to wait till I get a phone number?

    • Vertana@infosec.pub
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      Even the current implementation allows Authy. It isn’t great, but if you copy/paste the link that the “2FA Activation Link” gives you? It’s an OTP link you should be able to paste it right in the TOTP secret field. Bitwarden has the capability, I’d be surprised if Authy couldn’t parse that link.

        • Alex@infosec.pub
          link
          fedilink
          English
          arrow-up
          2
          ·
          1 year ago

          That isn’t why for me. I’m broke and unless you actively work to remove your number from databases and whatever… that kind of privacy is an illusion.