I personally am fine with this.

    • residentmarchant@lemmy.world
      link
      fedilink
      English
      arrow-up
      3
      arrow-down
      1
      ·
      1 year ago

      1password does this, too and it’s magical. I’ve had my SMS go to my browser via Google Messages for a while, but it’s so much easier to just auto-fill it instead of copy/paste

      • setVeryLoud(true);@lemmy.ca
        link
        fedilink
        arrow-up
        3
        ·
        1 year ago

        Also, 1password logs you out when you stare at it wrong, so I’m not worried about someone who would somehow get local access abusing it.

      • subtext@lemmy.world
        link
        fedilink
        arrow-up
        14
        arrow-down
        1
        ·
        1 year ago

        Is it less secure than it could be? Yes.

        Is it better than no 2FA? Also yes.

        In the end if it doesn’t work for your security model, than more power to you. But if it helps to increase the security of the average Joe, it’s good advice.

      • argv_minus_one@beehaw.org
        link
        fedilink
        arrow-up
        1
        arrow-down
        2
        ·
        1 year ago

        Allowing a smartphone access to anything sensitive is even worse advice. Smartphones are notoriously insecure.