this post was submitted on 09 Feb 2024
1516 points (95.6% liked)

Programmer Humor

19471 readers
1269 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

founded 1 year ago
MODERATORS
Feyter@programming.dev
anzo@programming.dev
BurningTurtle@programming.dev
pylapp@programming.dev
1516
FLOSS communities right now (i.imgflip.com)
submitted 9 months ago by onlinepersona@programming.dev to c/programmer_humor@programming.dev
428 comments fedilink hide all child comments
 

4 pane comic of dolan on the left and spooderman on the right

pane 1 (dolan): cum join opensurce cummunity!
pane 2 (spooderman): shure! how joyn?
pane 3 (dolan): Here discord! (with discord logo)
pane 4 (spooderman with tears in eyes): y u do dis?

you are viewing a single comment's thread
view the rest of the comments
[โ€“] technom@programming.dev 1 points 8 months ago (1 children)

Using phone numbers as second factor authentication is neither secure, nor is it in good faith. Force the customer to use something more anonymous and secure - like Fido keys or even TOTPs. Sneaking in ways to force the customer to reveal their personal details, in the name of security is a sinister dark pattern.

[โ€“] banneryear1868@lemmy.world 1 points 8 months ago

Phone number is the weakest form of 2FA but it's still an improvement. I've never had to use my phone in Discord though, I don't how Discord would even verify someone's phone number as legitimate. But like I said I have a couple Discord accounts with different emails, probably on 30-40 servers, and have never run in to this. So if they're collecting personal details in this really granular and specific manner, it seems like they're not doing a very good job at it.