1335

I love password based login (lemmy.world)

submitted 1 month ago by bdjegifjdvw@lemmy.world to c/programmer_humor@programming.dev

199 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[-] moseschrute@lemmy.world 6 points 1 month ago

What’s the 2nd factor? Email and what else?

[-] flynnguy@programming.dev 4 points 1 month ago

Email is considered insecure as a 2nd factor. TOTP stands for Time-based One-Time Password. Usually you store a seed and that combined with the time generates a time based password. If someone intercepts it, it's only valid for a certain time frame (I think about a minute or so), after which it's invalid.

[-] RamenJunkie@midwest.social 5 points 1 month ago

Just to add, SMS is also incredibly insecure as a 2FA

[-] KairuByte@lemmy.dbzer0.com 1 points 1 month ago

Arguably less secure than email.

[-] moseschrute@lemmy.world 3 points 1 month ago

Yes but email is only a second factor when used in addition to a first factor (e.g. password). If it’s just magic link without password, then email is the only factor

this post was submitted on 13 Mar 2026

1335 points (98.3% liked)

Programmer Humor

30963 readers

2101 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

Keep content in english
No advertisements
Posts must be related to programming or programmer topics

founded 2 years ago

MODERATORS

Feyter@programming.dev

anzo@programming.dev

BurningTurtle@programming.dev

pylapp@programming.dev