Hacker News new | past | comments | ask | show | jobs | submit | ev1's comments login

So far I haven't seen a single major company doing phone based (insecure) 2fa not use the number for marketing, data abuse, etc.

Non-standards based "authenticator" dedicated apps phone home and spy on you. Intentionally trying to break or block actual TOTP.


> Side note: the McDonald's app is nice in not requiring (or apparently even allowing) passwords to log in. However, there's a problem with its state transition, where the user needs to exit from the dialog that sends the sign-in link before they go to their email and click on the sign-in link, otherwise the user gets dumped to the next step without having actually signed in.

The mcdonalds app loads several dozen data collection sdks, pihole practically had a meltdown when it launched


I have encountered numerous sites that port scan localhost via websocket/img onerror/etc.


The answer is generally "move" unfortunately. Surge pricing for things like club and concert nights runs orders of magnitude higher than normal rides for the same wear and tear. These don't really happen in small towns, and in larger places it's multiple times a night nearly every night.


> children with his executives,

Why do people do this? I mean in any industry. Just why? Is there something I don't understand about executives or C-levels or something?


Probably a combination of a career-first mentality where they don't have the time or inclination to seek / maintain lasting relationships, and also having the means to not raise their own children. To these people children are not burden in the same way as traditional parents because they hardly contribute to raising them; instead they are just another play-thing.

There may also be some game of thrones shit going on where if a boss and a mini-boss have a baby it solidifies rank and power.


The biggest shock to me here is "aarch64 Windows doesn't have calc.exe"


No, your browser converts it before access


> Infosys will ban all OSS contributions from their developers.

Sounds... good to me?


To be entirely neutral on this reply, it's not part of the title on the linked article and against guidelines to add it like that.


I have not installed the TM app - you can add a ticket to Apple Wallet from the website, and every order I've seen has "don't have a phone? go to the box office for tickets when you arrive" somewhere


> go to the box office for tickets

They're not allowing that in general any longer. I wasn't allowed to log in to their site this summer without phone text verification.

However, I believe they still have a ticket printer for emergencies, such as when you show up at the window saying you broke your phone, but just happened to print a receipt before leaving.

Still prevents any sort of anonymous attendance.


Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: