Sagacious Himself — brevity in circumlocution: never blague — suffering genius

May 11, 2014

wordpress 2-step security still laughable

Filed under: BULLSHIT — Sagacious Himself @ 10:24 pm
Tags: , ,

WordPress assumes proof of phone ownership can be completed with ancient sms texting — false as is auto-reply and deleted — or via privacy rape (Google Authenticator app).  And why limit users to phones?  What about ubiquity of other internets capable devices?

Two supremely stooopid options: old for the luddite, or new for the cretin.

wordpress laughable two factor options pander to luddites and cretins

To compensate for these laughable offerings wordpress offers OTP only after choosing one or the other stooopid options

“to make sure you’re never locked out of your blog, you can generate a set of ten, one-time-use backup codes. We recommend that you print the backup codes out and keep them in a secure place like a wallet or document safe rather than saving them on your computer, where they’d be accessible to anyone using your machine. ” 

“At the end of the setup process for  Two Step Authorization, you’ll be given the option to generate backup codes:”

 

Which is all the more curious given the necessity of the OTP completion

 Generating backup codes is essential and must be done.

.

I’d like to generate my One Time Pad codes and not be bothered with luddite/cretinous “two” factor “choices”.  XMPP texting?  SIP texting?  wakey wakey!

Hewwo?

 

April 23, 2008

mirror: IceSword 1.22 – English

Filed under: security — Sagacious Himself @ 8:43 pm
Tags:

.
..
http://drop.io/icesword122
..
.

[ Himself.wordpress.com ]

.

April 12, 2008

CSRF attacks and a certain security article on firefox missing

Filed under: security — Sagacious Himself @ 4:39 am
Tags:

MOZ_NO_REMOTE=1

[start profile 1]
..
[start profile n]

MOZ_NO_REMOTE=0

gotta end with equals zero. woops

[ Himself.wordpress.com ]

Create a free website or blog at WordPress.com.