Hacker Newsnew | past | comments | ask | show | jobs | submitlogin
Haveibeenpwned’s Pwned Passwords is now open source under the .NET Foundation (twitter.com/troyhunt)
34 points by thibautg on May 27, 2021 | hide | past | favorite | 2 comments


Hopefully we will have 2fa available in the future on every website and app.


Yes, but only if I can use a single 2FA app or token or whatever for most things together with a password manager. My bank e.g. only allows their app as the 2nd factor and the setup is rather lengthy, you get physical post with a code etc. and actually adds another password to manage too. My other bank account is the same but using their app. All other services use something that is compatible with Google Authenticator and implementations of that industry standard.

So 2FA yes, custom proprietary apps and "smart" procedures that actually lower your security in practice, no. Don't reinvent the wheel please, even if money is concerned.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: