These are the same companies that don’t support second factors, only have their app as a second factor, or only SMS second factor. Is it too much to ask for smart card or token (yubikey) support?

  • lurch@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    1
    arrow-down
    1
    ·
    1 year ago

    No, you’re not following. (I assumed I was an account holder in that example, but it’s not important.)

    Someone is likely just to increment a number, so a new password is barley a hindrance if the previous one is compromised.

    Not if they use a password manager and click a button to completely randomize a new password. They do not have to worry they forget it, because they only have to memorize their master password.

    KeePass Password Generation Options

    Why would someone who was told to hit that button by IT increment a number instead?