Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
JulianMorrison
on July 28, 2019
|
parent
|
context
|
favorite
| on:
Malicious code in the purescript NPM installer
2FA would also make it much harder to use the "somebody hacked me" defense.
Operyl
on July 28, 2019
[–]
No at that point they'd be saying "zomg NPM has a terrible bug that allowed the hacker to bypass my 2FA!"
If someone is trying to redirect blame they'll always find some way to do so.
JulianMorrison
on July 29, 2019
|
parent
[–]
The problem is not liars, the problem is being unable to prove they were lying. With 2FA, the logs would prove it.
Operyl
on July 29, 2019
|
root
|
parent
[–]
Unfortunately, based on preexisting cases it really doesn't make much of a difference, the liars will still deflect the blame and the logs will always be "wrong".
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
