this post was submitted on 06 Dec 2023

140 points (97.3% liked)

[Outdated, please look at pinned post] Casual Conversation

6625 readers

1 users here now

Share a story, ask a question, or start a conversation about (almost) anything you desire. Maybe you'll make some friends in the process.

RULES

Be respectful: no harassment, hate speech, bigotry, and/or trolling
Encourage conversation in your post
Avoid controversial topics such as politics or societal debates
Keep it clean and SFW: No illegal content or anything gross and inappropriate
No solicitation such as ads, promotional content, spam, surveys etc.
Respect privacy: Don’t ask for or share any personal information

Related discussion-focused communities

founded 2 years ago

MODERATORS

Mysterious_Macaxeira@lemmy.world

shinigamiookamiryuu@lemm.ee

Bl4ze@lemmy.world

KaneLivesInDeath@lemmy.world

orangeNgreen@lemmy.world

neidu2@feddit.nl

140

Any company that still insists on forced password resets and frequent changes needs to learn about Social Engineering and Human Factors. (yiffit.net)

submitted 2 years ago by l_b_i@yiffit.net to c/casualconversation@lemmy.world

43 comments fedilink hide all child comments

These are the same companies that don't support second factors, only have their app as a second factor, or only SMS second factor. Is it too much to ask for smart card or token (yubikey) support?

you are viewing a single comment's thread
view the rest of the comments

[–] PlatinumSf@pawb.social 9 points 2 years ago (7 children)

Any Insurance company * (I say so because as an IT Administrator I'm forced to enable this to keep our cyber insurance policy, but I feel rather confident it's unnecessary given the research and our migration to ldap tied fido).

[–] CriticalMiss@lemmy.world 4 points 2 years ago (1 children)

I’m in this boat and I hate it.

[–] PlatinumSf@pawb.social 2 points 2 years ago

I’ll drink to that!

load more comments (5 replies)