this post was submitted on 30 Jun 2026
695 points (96.8% liked)

Lemmy Shitpost

40588 readers
3538 users here now

Welcome to Lemmy Shitpost. Here you can shitpost to your hearts content.

Anything and everything goes. Memes, Jokes, Vents and Banter. Though we still have to comply with lemmy.world instance rules. So behave!


Rules:

1. Be Respectful


Refrain from using harmful language pertaining to a protected characteristic: e.g. race, gender, sexuality, disability or religion.

Refrain from being argumentative when responding or commenting to posts/replies. Personal attacks are not welcome here.

...


2. No Illegal Content


Content that violates the law. Any post/comment found to be in breach of common law will be removed and given to the authorities if required.

That means:

-No promoting violence/threats against any individuals

-No CSA content or Revenge Porn

-No sharing private/personal information (Doxxing)

...


3. No Spam


Posting the same post, no matter the intent is against the rules.

-If you have posted content, please refrain from re-posting said content within this community.

-Do not spam posts with intent to harass, annoy, bully, advertise, scam or harm this community.

-No posting Scams/Advertisements/Phishing Links/IP Grabbers

-No Bots, Bots will be banned from the community.

...


4. No Porn/ExplicitContent


-Do not post explicit content. Lemmy.World is not the instance for NSFW content.

-Do not post Gore or Shock Content.

...


5. No Enciting Harassment,Brigading, Doxxing or Witch Hunts


-Do not Brigade other Communities

-No calls to action against other communities/users within Lemmy or outside of Lemmy.

-No Witch Hunts against users/communities.

-No content that harasses members within or outside of the community.

...


6. NSFW should be behind NSFW tags.


-Content that is NSFW should be behind NSFW tags.

-Content that might be distressing should be kept behind NSFW tags.

...

If you see content that is a breach of the rules, please flag and report the comment and a moderator will take action where they can.


Also check out:

Partnered Communities:

1.Memes

2.Lemmy Review

3.Mildly Infuriating

4.Lemmy Be Wholesome

5.No Stupid Questions

6.You Should Know

7.Comedy Heaven

8.Credible Defense

9.Ten Forward

10.LinuxMemes (Linux themed memes)


Reach out to

All communities included on the sidebar are to be made in compliance with the instance rules. Striker

founded 3 years ago
MODERATORS
 
you are viewing a single comment's thread
view the rest of the comments
[–] Hawke@lemmy.world 0 points 2 days ago (2 children)

[citation needed] on the second half

[–] ILikeBoobies@lemmy.ca 13 points 2 days ago* (last edited 2 days ago) (1 children)

A big feature of sms is that it's not encrypted. Every tower that recieves the message is trusted to forward it unaltered. This is one attack avenue.

https://www.helpnetsecurity.com/2020/11/12/sms-voice-mfa/

Things like the following are generally recommended though Microsoft recommends using their app. https://www.yubico.com/

I should have clarified that sms 2fa is insecure not 2fa.

[–] Hawke@lemmy.world 6 points 2 days ago

Okay that makes sense. Yes sms is insecure, not 2fa.

[–] axx@slrpnk.net 7 points 1 day ago (2 children)

Briefly: look into sim swapping, which is the most obvious, day to day risk.

Then there's SS7 and how inherently trusting the whole system is.

Then depending on where you are, some mobile networks still have terrible link encryption (were talking so bad a normal laptop is enough these days to break it on the fly). Granted, this is rare these days, in part thanks to the efforts of Karsten Knohl, SRLabs and other security researchers who did a lot to shine a light on this and SS7

Not sure how up to date it still is, but https://gsmmap.srlabs.de/ shows how unequal networks are.

[–] Prathas@lemmy.zip 1 points 1 day ago

This is becoming less of an issue as US Mobile has anti-SIM-hijacking protection; hopefully other carriers will follow suit. Of course, the carriers themselves can still read your msgs, but so can WhatsApp, probably (despite their claims to the contrary).

[–] Hawke@lemmy.world -4 points 1 day ago (1 children)

That’s all sms though, not 2fa in general.

All valid points and good information within that scope.

[–] Appoxo@lemmy.dbzer0.com 1 points 1 day ago* (last edited 1 day ago) (1 children)

(...) and sms is an insecure system to begin with.

citation needed on the second half

That’s all sms though, not 2fa in general.

Are you an LLM?

[–] Hawke@lemmy.world 1 points 1 day ago* (last edited 1 day ago) (1 children)

It’s been edited, bud. Originally it said that 2fa in general is insecure.

[–] Appoxo@lemmy.dbzer0.com 2 points 1 day ago* (last edited 1 day ago) (1 children)

The edit icon is a bit not-obvious in Voyager...
And I can't view the original text.

Edit: Speeling on a phone is hard (read: annyoing)

[–] Prathas@lemmy.zip 3 points 1 day ago (1 children)

I don't think the original text before edits is viewable by anyone other than possibly instance admins.

[–] ToxicWaste@lemmy.cafe 1 points 19 hours ago

there used to be the trick to click "view source" to do so. worked for anyone on any client a couple hours back in time.

but that was fixed long ago (years?)