moderated Re: Wording to disable two-factor (2FA) #suggestion


Mark Murphy
 

On Mon, Nov 2, 2020 at 10:16 AM, Jeff Smith wrote:
My secure advice (as a specialist) is to require the OTP instead, because of the security breaches that often happen by people who only know the password so they sneak in while the account owner is AFK and disable authentication so they can go to their own computer and authenticate because they only were able to steal the owner's password.
Why not require both factors to disable 2FA?

Join main@beta.groups.io to automatically receive all group messages.