@tennoseremel The only place where I saw mandatory 2FA is corporate security policies.
@skobkin @tennoseremel@mstdn.io Steam
@sunchaser @tennoseremel When did 2FA became mandatory in steam?
@skobkin @tennoseremel@mstdn.io It's mandatory to use market for example
@skobkin @tennoseremel@mstdn.io It still means you still have limited account w/o 2fa
@skobkin @tennoseremel@mstdn.io I'm not against TOTP 2fa, I even have hardware keys (an at least 30 totp codes) :D I just think that "Steam Market" is a good example of a service that requires 2fa and the fact that it is a part of a bigger service is irrelevant
@sunchaser @tennoseremel It's ok.
2FA is good. The only thing I'm against in this subject is when some companies enforcing their own proprietary 2FA.
Take Yandex for example with theirs Yandex.Key.
If 2FA is implemented using open TOTP standard it's good as you can choose any implementation that suits you.
You can say that Steam is using it too, but it's not like that. They're just using slightly tweaked TOTP AFAIR, because some software like KeePass, AndOTP and others support Steam's secrets to initialize their OTP password generator.