Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I get why they wouldn't offer it. Support nightmare and very few people would use it anyway.

Almost everything should have MFA, but it's not a solved problem. The overhead is to high and if you force it upon users you'll lose many of them.



Valid point about support but if you enforce it everyone will have to use it unconditionally.

Not having MFA opens it up to potential data breaches causing havoc.


Absolutely, but not even Facebook enforced MFA... Though they do offer it. I just can't imagine the absolute nightmare it must be to get Facebook, Google or Microsoft to reset your MFA if you lose it. You might as well create a new account.

We did a MFA reset for a remote coworker a few weeks ago, the about of validation and procedures we had to go through was insane, but also the only way to ensure that this is a correct reset.

MFA is really really important, but there's no good solutions for it yet.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: