@tennoseremel The only place where I saw mandatory 2FA is corporate security policies.

@skobkin @tennoseremel@mstdn.io It's mandatory to use market for example

@sunchaser @tennoseremel It's not mandatory. It's optional like all Steam marketplace.
Also it's strange that you want to make financial operations and also don't agree with their security policy.

@skobkin @tennoseremel@mstdn.io It still means you still have limited account w/o 2fa

@sunchaser @tennoseremel It's ok.
2FA is good. The only thing I'm against in this subject is when some companies enforcing their own proprietary 2FA.
Take Yandex for example with theirs Yandex.Key.
If 2FA is implemented using open TOTP standard it's good as you can choose any implementation that suits you.

You can say that Steam is using it too, but it's not like that. They're just using slightly tweaked TOTP AFAIR, because some software like KeePass, AndOTP and others support Steam's secrets to initialize their OTP password generator.

@skobkin @tennoseremel@mstdn.io I'm not against TOTP 2fa, I even have hardware keys (an at least 30 totp codes) :D I just think that "Steam Market" is a good example of a service that requires 2fa and the fact that it is a part of a bigger service is irrelevant

Sign in to participate in the conversation
Librem Social

Librem Social is an opt-in public network. Messages are shared under Creative Commons BY-SA 4.0 license terms. Policy.

Stay safe. Please abide by our code of conduct.

(Source code)

image/svg+xml Librem Chat image/svg+xml