No Such Thing as Perfect Security | http://www.littlebobbycomic.com/projects/week-207/ …pic.twitter.com/TIb7l0CU7V
You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
2FA doesn't solve the problem, but it might stop the attack that worked yesterday. However, so would requiring all users to type "banana" into a form when they login. If we can't agree that 2FA is trash, can we agree that 2FA is about as secure as BFA? (Banana factor auth
)
It’s not just about solving the problem. It’s about just making it cost more in time/knowledge/resources on the part of the attacker’s to fall in line with your risk appetite. I agree it’s fucking stupid, but yes it still is better than nothing if it’s what you already have.
I guess we're on the same page then. IIUC, I think you shouldn't inconvenience users and burn goodwill that could be used in future to rollout real solutions, but you think it's worth it. I think if you can rollout 2FA but not U2F, then just do user education for now!
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.