• RecluseRamble@lemmy.dbzer0.com
    link
    fedilink
    arrow-up
    3
    ·
    edit-2
    5 months ago

    That’s why I don’t use hardware tokens. They are more secure but they can break or get lost/stolen. My authentication app supports backups.

    • jj4211@lemmy.world
      link
      fedilink
      arrow-up
      1
      ·
      5 months ago

      Indeed, but some “security” guys frown deeply about the private key ever leaving a specific hardware device, because the second it can be backed up they freak out that it could, theoretically, be stolen. It’s hardly a practical concern, but there’s a lot of security people that don’t care about practical considerations.

      • RecluseRamble@lemmy.dbzer0.com
        link
        fedilink
        arrow-up
        4
        ·
        5 months ago

        I see it more neutrally - the concern isn’t wrong after all. Security is always to be balanced against convenience.

        I consider being locked out for good so inconvenient that I’m willing to sacrifice a bit of security to avoid it. But everyone has to find what works best for them.