Comment by rdl
12 years ago
I've never trusted the SMS auth; too easy to play phone routing tricks, and most high security environments don't allow phones or have coverage (of course there's also the same problem for no-phones for a phone-based TOTP; the solution is a physical token).
No comments yet
Contribute on Hacker News ↗