Programmer Humor

30412 readers

2327 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

Keep content in english
No advertisements
Posts must be related to programming or programmer topics

founded 2 years ago

MODERATORS

Feyter@programming.dev

anzo@programming.dev

BurningTurtle@programming.dev

pylapp@programming.dev

1242

I love password based login (lemmy.world)

submitted 3 days ago by bdjegifjdvw@lemmy.world to c/programmer_humor@programming.dev

180 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] Routhinator@startrek.website 17 points 2 days ago (1 children)

Magic link is lazy 2fa.

Implement TOTP support, you lazy fucks.

[–] moseschrute@lemmy.world 6 points 2 days ago (1 children)

What’s the 2nd factor? Email and what else?

[–] flynnguy@programming.dev 4 points 2 days ago (2 children)

Email is considered insecure as a 2nd factor. TOTP stands for Time-based One-Time Password. Usually you store a seed and that combined with the time generates a time based password. If someone intercepts it, it's only valid for a certain time frame (I think about a minute or so), after which it's invalid.

[–] RamenJunkie@midwest.social 5 points 1 day ago (1 children)

Just to add, SMS is also incredibly insecure as a 2FA

[–] KairuByte@lemmy.dbzer0.com 1 points 12 hours ago

Arguably less secure than email.

[–] moseschrute@lemmy.world 3 points 1 day ago

Yes but email is only a second factor when used in addition to a first factor (e.g. password). If it’s just magic link without password, then email is the only factor