syd@lemy.lol to TechnologyEnglish · edit-22 年前15M Trello accounts have been leakedlemy.lolimagemessage-square102linkfedilinkarrow-up1617arrow-down114file-textcross-posted to: [email protected]
arrow-up1603arrow-down1image15M Trello accounts have been leakedlemy.lolsyd@lemy.lol to TechnologyEnglish · edit-22 年前message-square102linkfedilinkfile-textcross-posted to: [email protected]
minus-squareJustUseMintdeleted by creatorlinkfedilinkEnglisharrow-up1·2 年前Physical token over TOTP authenticator?
minus-squarebrian@programming.devlinkfedilinkEnglisharrow-up2·2 年前all the root secrets are available in plain text the generator app at some point, they have to be. moving that to a single purpose device greatly reduces the risk of vulnerabilities in your phone leading to exfiltration via internet connection
minus-squareKayel@aussie.zonelinkfedilinkEnglisharrow-up2arrow-down1·2 年前I cannot think of a use-case outside of statecraft. Maybe companies engaged, or being engaged, in corporate espionage.
Physical token over TOTP authenticator?
all the root secrets are available in plain text the generator app at some point, they have to be. moving that to a single purpose device greatly reduces the risk of vulnerabilities in your phone leading to exfiltration via internet connection
I cannot think of a use-case outside of statecraft. Maybe companies engaged, or being engaged, in corporate espionage.