undefined | Better HN

0 pointstheshrike794y ago0 comments

And Signal still leaks phone numbers to people, that's why I refuse use it for group chats. For encrypted 1-1 with people I already know it's fine though.

0 comments

dheera4y ago

Get a Twilio number and use it for pretty much everything.

Twilio is awesome, I even have my Twilio workflow configured to receive "2FA" calls and hit the # key without my intervention, and I have it set up mess with unknown callers by putting them on hold indefinitely with music.

wyre4y ago

Wouldn’t using Twilio effect the security of 2FA?

dheera4y ago

Yes, but I don't do phone-based 2FA; I only use U2F or TOTP.

When I have a massive, immobile desktop in front of me it makes no sense that the desktop isn't the 2FA device, and that I'm asked to go search for an easy-to-steal tiny 5" device.

Also, I don't believe in phone numbers being 1:1 correlated with a device; for convenience I should be able to take a call from any device that I happen to have with me. So phone numbers should never be used for 2FA IMO.

1 more reply

trapped4y ago

Better than Zynga, right? Corporation which has leaked kids data. Clones games, manipulates kids and adults in spending thousands of $$$ on virtual things, screwed employees from stock compensation.

It's easy to criticize, right? Signal and Apple are at-least doing better than Zynga.

dang4y ago

I'm not sure if this is what happened, but if you tracked down where someone works and are using that to attack them, that is a serious abuse and the sort of thing we ban accounts for—so please don't do anything like that on HN. (If you didn't do anything like that, ignore this comment.)

https://hn.algolia.com/?dateRange=all&page=0&prefix=false&so...

https://news.ycombinator.com/newsguidelines.html

trapped4y ago

Care to share evidence before making such allegations.

madars4y ago

https://community.signalusers.org/t/hide-phone-number-entire...

j / k navigate · click thread line to collapse

0 comments

dheera4y ago

Get a Twilio number and use it for pretty much everything.

wyre4y ago

Wouldn’t using Twilio effect the security of 2FA?

dheera4y ago

Yes, but I don't do phone-based 2FA; I only use U2F or TOTP.

When I have a massive, immobile desktop in front of me it makes no sense that the desktop isn't the 2FA device, and that I'm asked to go search for an easy-to-steal tiny 5" device.

1 more reply

trapped4y ago

Better than Zynga, right? Corporation which has leaked kids data. Clones games, manipulates kids and adults in spending thousands of $$$ on virtual things, screwed employees from stock compensation.

It's easy to criticize, right? Signal and Apple are at-least doing better than Zynga.

dang4y ago

https://hn.algolia.com/?dateRange=all&page=0&prefix=false&so...

https://news.ycombinator.com/newsguidelines.html

trapped4y ago

Care to share evidence before making such allegations.

madars4y ago

https://community.signalusers.org/t/hide-phone-number-entire...

j / k navigate · click thread line to collapse