> In particular, I don't see how 2FA is possible with this You can use anything ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		zmmmmm on Dec 24, 2022 \| parent \| context \| favorite \| on: The situation at LastPass may be worse than they a... > In particular, I don't see how 2FA is possible with this You can use anything that integrates with GPG ... eg: you can do it with a Yubikey [0] [0] https://support.yubico.com/hc/en-us/articles/360013790259-Us...

eternityforest on Dec 24, 2022 [–]

Ah, I stand corrected, I forgot about trusted hardware based 2FA.

Still, it doesn't allow SMS or email based 2FA as far as I can tell, since that involves a trusted server and doesn't mean anything in a trustless model where the server owner could just add a bypass.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact