Conversation

Notices

1. Embed this notice
   Ron Gilbert #KamalaHarris (grumpygamer@mastodon.gamedev.place)'s status on Wednesday, 11-Oct-2023 14:23:59 JST Ron Gilbert #KamalaHarris

   I've got a better idea Steam! Why don't you add real 2FA instead of your silly custom system. I don't work with my fucking phone next to me. Use some of those billions (yes, with a B) you make every year and hire some programmers.

   • Embed this notice
     iced depresso (icedquinn@blob.cat)'s status on Wednesday, 11-Oct-2023 14:23:55 JST iced depresso

     in reply to

     • Zoidberg For President
     @ZoidbergForPresident @grumpygamer 2fa just involves a secondary authentication method. traditionally this was an external hardware token. in more recent years, 2FA is more a data harvesting scam to steal your phone number.
   • Embed this notice
     Zoidberg For President (zoidbergforpresident@mastodon.xyz)'s status on Wednesday, 11-Oct-2023 14:23:57 JST Zoidberg For President

     in reply to

     @grumpygamer Doesn't 2FA require something like a mobile phone?

   • Embed this notice
     iced depresso (icedquinn@blob.cat)'s status on Wednesday, 11-Oct-2023 14:26:23 JST iced depresso

     in reply to

     • iced depresso
     • Zoidberg For President
     @ZoidbergForPresident @grumpygamer i've also seen 2FA used as another scam to get out of customer support; a la Discord "if you enroll in 2FA, support will never help you again, its our policy to reject all tickets where an authenticatior is involved."
     
     i don't use it there because if i don't, i can use password reset and contact support. (in the case of steam i think they ask you for recent receipts and such.) with the 2FA active, discord openly states fuck you get a new account. i'm not sure about github (whom is bothering me about a pending forced 2FA toggle) but most seem to think i *have* somewhere to just store this damn scratch code in perpetuity somehow.