Follow

Workplace 2FA implementation gripes 

Work enabled 2FA a few months back. I jumped on the TOTP option. Their other "2FA" option was a secret Q&A (whaaaat?)

Now it's time to change my password (expiry policies despite NIST and Schneier et al, sigh) and the password reset web page **doesn't use 2FA**. Just log in with your old password.

What in the what? Half-assed 2FA, that's what.

· · Web · 1 · 0 · 1

Workplace 2FA implementation gripes 

@nihil Yeah, I don't know if it's an oversight, or a lack of skilled resources to fix something that they know should be fixed.

Sign in to participate in the conversation
Mastodon

Server run by the main developers of the project 🐘 It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!