60°F

Aaron Parecki

  • Articles
  • Notes
  • Photos
  • Aaron Parecki
    The confusing part about online security is knowing *when* it's safe to give your SMS two-factor auth codes to a third party.
    Portland, Oregon • 39°F
    #security #mfa
    Mon, Jan 13, 2020 2:53pm -08:00
    4 likes 9 replies
    • Evan Prodromou
    • Dmitri Shuralyov
    • Amirsh
    • Heather Downing πŸ‡¦πŸ‡Ά 🐧 🚒 πŸ‘©‍πŸ’» @Antarticonf
    • lunatech twitter.com/lunatech
      clearly a lot (several?) of us have never banked in the U.S., would you mind giving a 1-3 sentence synopsis of the (horror of the) setup?
      Mon, Jan 27, 2020 12:54pm +00:00 (via brid-gy.appspot.com)
    • jmreekes micro.blog/jmreekes

      @aaronpk i don’t think it will ever happen, but I will be glad to see SMS two-facto auth codes go away completely.

      Tue, Jan 14, 2020 3:45pm +00:00
    • geewiz micro.blog/geewiz

      @aaronpk Like, never?

      Tue, Jan 14, 2020 9:28am +00:00
    • Vika twitter.com/kisik21
      Is it safe sometimes?!
      Tue, Jan 14, 2020 1:44am +00:00 (via brid-gy.appspot.com)
    • Vika fireburn.ru

      Is it safe sometimes?!

      Tue, Jan 14, 2020 4:43am +03:00
    • danj micro.blog/danj

      @aaronpk I’ve been sticking them in 1Password alongside everything else. 🀫

      Tue, Jan 14, 2020 12:28am +00:00
    • Alasdair Allan twitter.com/aallan
      …and you have just opened up a whole new pit of horror for me. Thanks. 😱
      Mon, Jan 13, 2020 11:01pm +00:00 (via brid-gy.appspot.com)
    • Aaron Parecki twitter.com/aaronpk
      you must not bank in the US πŸ˜‰
      Mon, Jan 13, 2020 10:57pm +00:00 (via brid-gy.appspot.com)
    • Alasdair Allan twitter.com/aallan
      Umm. In what circumstances would you need to give a 2FA code to a third party? 😐
      Mon, Jan 13, 2020 10:55pm +00:00 (via brid-gy.appspot.com)
Posted in /notes using quill.p3k.io

Hi, I'm Aaron Parecki, Senior Security Architect at Okta, and co-founder of IndieWebCamp. I maintain oauth.net, write and consult about OAuth, and participate in the OAuth Working Group at the IETF. I also help people learn about video production and livestreaming and dabble in product design.

I've been tracking my location since 2008 and I wrote 100 songs in 100 days. I've spoken at conferences around the world about owning your data, OAuth, quantified self, and explained why R is a vowel. Read more.

  • Security Architect at Okta
  • IndieWebCamp Founder
  • OAuth WG Member

  • πŸŽ₯ YouTube Tutorials and Reviews
  • 🏠 We're building a triplex!
  • ⭐️ Life Stack
  • βš™οΈ Home Automation
  • All
  • Articles
  • Bookmarks
  • Notes
  • Photos
  • Replies
  • Reviews
  • Trips
  • Videos
  • Contact
© 1999-2023 by Aaron Parecki. Powered by p3k. This site supports Webmention.
Except where otherwise noted, text content on this site is licensed under a Creative Commons Attribution 3.0 License.
IndieWebCamp Microformats Webmention W3C HTML5 Creative Commons
WeChat ID
aaronpk_tv