@KentInPublic @bhsharp So, I guess I don't understand why you think 2-factor would be helping you here?
-
-
Replying to @cmuratori
@cmuratori@bhsharp Because if they get my pass but *don’t* MITM me, they can’t log in or change my pass later.l1 reply 0 retweets 0 likes -
Replying to @KentInPublic
@KentInPublic@bhsharp But you just said you changed your password after the cert! I give up :P4 replies 0 retweets 0 likes -
Replying to @cmuratori
@cmuratori Having thought about this more, it baffles me that you are actually arguing 2-factor would not have helped. It wouldn't eliminate1 reply 0 retweets 0 likes -
Replying to @bhsharp
@cmuratori all possibility of an attack, but it removed the major, most convenient whole category of attack. Baffled you are disagreeing.1 reply 0 retweets 0 likes -
Replying to @cmuratori
@bhsharp Which also happens to be incontrovertible :)1 reply 0 retweets 0 likes -
Replying to @cmuratori
@bhsharp I said, the only thing 2-factor prevents is non-MITM impersonation. And hey, that's exactly right!2 replies 0 retweets 0 likes -
Replying to @cmuratori
@bhsharp You are welcome to argue about how _important_ that type of attack is, but that is more about what kind of site it is and so on.2 replies 0 retweets 0 likes -
Replying to @cmuratori
@bhsharp And to be clear, I really should say non-MITM _takeover_, because really it doesn't even prevent impersonation unless...1 reply 0 retweets 0 likes
@bhsharp ... you are set to 2-factor on _every login_ (which maybe you do, I don't know).
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.