I ask inspired by experiences with Google. Google/YouTube, for as long as I can remember, always had a strange habit of assuming absolutely anyone even near to you is you. Back when I had my first YouTube account (which was also back when I was in a completely different part of the world), for the last few years of having it, it had my sister’s channel listed under “alternate accounts” and it wouldn’t even ask me for the password to log into her account, I could simply click over to it like it was nothing (led to a lot of sister rivalry moments). Of note, on a less severe scale, something akin to this mindset is also credited to leading me to witnessing a documented and verifiable triple banning of cherished accounts, how lovely.
So yeah, my first curious hypothetical question I have of the year. How common/normal would this stance be on the net, with something like 2FA where it could mean the difference between data and makeshift DNA (secondary question, does it actually work as well as touted years ago)?
rdyoung@lemmy.world 9 months ago
If it doesn’t ask you to verify the number by entering a code that it texts you, it’s not true 2fa.
As for your sister’s account. Are you sure it was her account and not you just viewing her channel? If you were actually logged in to her account it stuck around because sites store credentials via cookies it’s not unheard of to be able to access previously logged in accounts for a very very long time even after moving across the globe.
And what the fuck do mean by “makeshift DNA”? Unless you meant makeshift 2fa which is still confusing as a term.
shinigamiookamiryuu@lemm.ee 9 months ago
That’s what I mean, we had a family computer way back then and YouTube assumed once and remembered its assumption forever. By “makeshift DNA” I mean a set-in-place identifier. I never said it was true two factor authentication if it didn’t text someone, I was asking if, when you choose to be texted, if it’s normal to assume the number chosen to be texted on is property of the person setting it up, versus, for example, a family member lending a number to use. I for one don’t even have a phone number right now.
rdyoung@lemmy.world 9 months ago
Numbers can belong to anyone and yes, they do “assume” that the number you enter is at the least accessible by you. It would make no sense for you to make up a number or give them a relative or friends number especially for 2fa.
Why don’t you have a phone number? You can get a cheap prepaid phone and if you don’t want to pay for cell service you can import that number to Google Voice or other services like textnow, you could even go straight to textnow and get a free number from them. I have one that I pay like $5/year for them to hold on to just in case I feel like I need it.