he owns 14% of Meta. And also paying his employees a fair wage depends on acting responsibly.

of course it’s not “the” problem with him, we are clearly circlejerking here.

and i’d say as the founder/ceo/face of a company you do owe it to the company, including the employees, to look presentable.

this isn’t some schmoe like you or me, he’s a billionaire. he can afford a daily stylist, or at least before conference calls.

well that is what he’s saying. what he should try is thinking about why the things he says are so “value-destroying”.

he could at least find a better haircut than pube fro.

the thing is he thinks he knows better than the rest of us. because he’s a billionaire.

Choosing to force users to memorize a recovery code

now who’s being purposefully obtuse.

use any other 2FA app for your email so you aren’t in a 2FA loop.

yeah this whole article was an unnecessary rant which the author realized only after publishing.

Update: A reader writes in with an obvious comment that did not occur to me:

The obvious reason not to let people put things on the screens you own in public is that invariably people will put porn on them, and then you’ll have other people complaining that the united screen system is showing porn. They don’t say this because no corporate PR hack is going to talk about porn when it’s not necessary. But it’s definitely the real reason, and it’s one they will not and should not budge on.

/1. we’ve covered this already. that’s why recovery codes exist.

/2. losing your device is not a threat to your accounts saved in bitwarden, you’d just have to reset your passwords. it sucks, but that’s not a security threat.

/3. there’s way more than brute-force attacks out there.

I’d hardly consider it overkill for protecting literally all of your online passwords.

We already covered this at the top. You keep the recovery codes unexposed to the internet or obfuscated in some way, unlike your usual password. Therefore you can have confidence that they haven’t been hacked, leaked, or whatever like passwords often are.

anyway I tire of your sea lioning. if you are truly asking good faith questions you can research on your own from here.

clearly it be supernatural and caught them unawares.

there’s an entire continuum of political support, and you can choose to draw a line anywhere on it. I think it’s perfectly reasonable to draw that line at outright public endorsement, particularly now with Trump in office.

same, my torrent container is connected to Mullvad and works great.

just when you think this timeline can’t get any stupider.

yes, that’s the whole point, to recover your account if you lose your MFA device. what are you even trying to say?

edit:

the article lists 3 very important advantages, and 9 relatively small/niche disadvantages (or even irrelevant in the case of SMS). mobile MFA makes sense for the vast majority of people, of course there are always edge cases who it may not work for.

ok, sorry for answering what appeared to be a genuine question.

I can’t believe people are arguing about and downvoting this. Especially for a service that holds all of your passwords, it’s the highest priority thing for you to secure.

two places:

\1. secure location in your home (physical copy in a safe or a digital copy on an encrypted disk)

\2. in case of a disaster like a home fire where you lose the 2FA device and local backup: in a remote location such as an encrypted file in a cloud service or at a trusted friend/family’s house.