Installed Steam on a new computer. Signed in. It sent a passcode to my GMail. I signed into GMail. It wanted me to 2FA because I hadn't signed into Google on that device. It sent a notification to my phone, which I never received. I had it resend the notification twice, still nothing. Tried again with my phone's offline passcodes. Neither worked. Tried the QR code/Bluetooth connection, and that finally did it.

At least I got through in the end, but fuck, it's annoying.

  • hello_hello [comrade/them]
    ·
    edit-2
    19 hours ago

    I don't use 2FA on anything that doesn't force it, garbage security theater because people don't use password managers or use the same passwords for everything.

    I don't know what hurts more: People who don't use Ublock Origin or people who don't use a password manager. Such simple tools that eliminate 99% of the bs.

    • quarrk [he/him]
      ·
      10 hours ago

      Security theater is an overstatement. If your password manager has a data breach (which happened a couple years ago with LastPass) then 2FA offers an extra layer of protection. E.g. if hackers get your email password, and it’s short enough to be decrypted, then 2FA would save you. Of course a longer password makes 2FA less necessary, but redundancy doesn’t really hurt anything

      • hello_hello [comrade/them]
        ·
        4 hours ago

        which happened a couple years ago with LastPass

        That's the thing, I use KeepassXC which is a local-only libre password manager. So someone would need physical access to my machine in order to copy the encrypted password database file. I'm the only one responsible for syncing the file across my devices.

        Why someone would trust a proprietary always-online password manager that requires personal information and probably has ties to the Zionist entity is beyond me.