Hacker News new | past | comments | ask | show | jobs | submit login

> nor you can store in your password manager

Some 2FA apps also allow you to back up your codes to a cloud service.

Yes, but I put it into category of "unsafe things that defeat the point of mechanism"

For example, you can put your spare house key under doormat. This effectively makes a lock on your house door require "something you know" (you need to know where the key is stored).

However, that does not mean that we can say that all keys are "something you know". The fact that many people decided to compromise their security does not reflect on other intended use of locks and keys.

Agreed. But I think it goes to show how blurry the line is between "know" and "have."

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact