Why would an app that ostensibly just wants to verify my ownership of another account ever need the recovery email address that I use with that account? If you want an email, just ask for one. You don't need to know the dedicated, private email address I use with other services.
Conversation
Replying to
This should be treated as sensitive security settings, . You might as well let 3rd party apps request password length, 2fa method, phone number, etc. What is the argument for it ever being ok for a person to expose this?
5
3
77
GIF
read image description
ALT
1
Replying to
I generally don't trust apps which want access to ma accounts on whatever service. It's a good idea to always keep this clean and check what's still connected, same with open sessions in trading accounts, Telegram and whatnot. Especially whatnot.
1
2
Yes periodically go through and see what is connected and remove anything that isnโt needed.
1
2
Or we don't and delay the moment where they come knocking with a baseball bat a bit. Can't think around enough corners in crypto, way too many bad things have already happened.
1
1
Replying to
This is Mekas, right? It's also very strange that they want to see your account settings
2
2
know origin also does it hehe๐
๐ง
1