Making two-factor authentication via SMS a paid feature is an excellent way to ensure that people don't use two-factor authentication. This is a terrible idea because while SMS isn't the best method, it's better than nothing.
Making two-factor authentication via SMS a paid feature is an excellent way to ensure that people don't use two-factor authentication. This is a terrible idea because while SMS isn't the best method, it's better than nothing.
@arush There is a legitimate argument that 2FA with a phone is worse than nothing, but Twitter undermines that argument by allowing it to be used, on their system, if you pay.So any security gained is gone with the first $8.
@arush make sms 2fa a paid feature and 2fa via one time pads a free feature.
@arush Yep. Also, their recommended option is a security key, which I suspect most people won’t want to use, either.