Steal my account. I don't give a shit. I'll make a dozen others.
associating an email address with my account is more of an opsec risk than someone brute forcing my password so they can steal my upbears
(I'll do it once there's TOTP support)
too much work to get that setup, stored, log in every time, etc, i'm just gonna wait for totp :)
edit: realised that :) sounds snarky but I meant to convey excitement that totp is coming
I feel so bad for Protonmail getting a bunch of burners. That's kind of not really what it's for, I feel. :/
Isn't there built-in Encryption (point-to-point IIRC). I remember Proton being big on security in that regard (before Gmail copied it anyway).
In any case, I hate how Gmail has turned off making burners to where you need a phone number and other shit that wasn't needed back in the day. I dunno if a law/"child protection" act caused it, but it sucks because that was my main way of doing throwaways. Create a g-mail account in like two minutes and then just use the +/. trick until needing a new one.
I’ll do it once there’s TOTP support
Seconded. I actually removed my email from this account rather than try to set up a burner email (I have a password manager, so I won't lose my PW and it's not gonna get compromised unless this site is storing PWs in plaintext, which I highly doubt).
thanks for telling me how many easibly hackable users there are on this site
Sure, as soon as you implement TOTP and U2F/FIDO2 support.
With the current setup an attacker only needs to compromise one factor, the email inbox, to take over the account via password reset.
Glad you posted this, I completely missed the 2fa option in the settings. Thank you!
Burner protonmail this, burner protonmail that… just use your uni email address.
