You are viewing a single comment's thread from:

RE: WARNING - 2 factor verification and its dangers - VERY IMPORTANT - #steempunks #minnowschool

in #warning7 years ago (edited)

Never thought about it, OF COURSE.
I guess it is tied to the phone number, which is the SIM. So maybe this would give ample motive to actually purchase an old phone bone from 2004. They simply work like they should, the battery lasts forever and you can leave it in the sunlight and it will still function.

Having had terrible experiences with a smart phone a friend gifted me I am never going back to these sensitive and fragile pieces of "high technology". Especially now.
Thanks for the heads up!

Sort:  

If only it was tied to the SIM, it's actually tied to the software installation, if your phone software gets reset it also decouples your 2 factor checks.

Its a pain

Thank you very much for commenting @paradigmprospect :)

nice to see someone else who also likes old phones

I have no reason to doubt what you're saying, I'm afraid I just don't get it yet.

Does that apply to old phones? You know, Samsung ones with built in spelling mistakes in their auto correct. Long before operating systems. I wouldn't even know how to reset that phone "software" - there's no real port or OS. And the number the verification arrives at is on my SIM, I can put the card in other phones and it will have the same number.

Isn't it true that as long as I have the same number on that old phone it will still work after resetting? How would the exchange know that anything is different? How would the phone not tie to its SIM number after rest? Because "modern" phones work differently and require OS shenanigans to access the actual number?

You don't actually need to answer these, just thinking out loud here, pondering how to best protect the access. I have had some hardcore password lessons in the last years that taught me a lot.

I know a few people who religiously reject smartphones <3

Aah well you see two factor verification is this type of application that installs on a smartphone thats coupled to your login on another website, thing is, if your smartphone is reset, you can in many cases lose access to the website it opens, because it becomes a second requirement of logging in.

People take it and assume its safer, but it exposes you to the problems covered in the post, which is often left unconsidered at the time of enrolling in the feature.

See two factor authentication is not phone number centric, its linked to your software installation, which makes you vulnerable to damage, loss and some forms of sabotage.

Coin Marketplace

STEEM 0.20
TRX 0.26
JST 0.040
BTC 101672.76
ETH 3666.48
USDT 1.00
SBD 3.15