Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Google's got enough of my info.

If they want to come up with a two-factor auth, I'm happy to provide the public half of a PKI keypair. Of my choosing.

Not my phone number, thanks.

My real email is too valuable to be left to GMail.



You can get a list of 1-time pads instead.


To setup 2 factor auth, you have to give them a phone number that you can receive a call or sms on, I believe.


I'm pretty sure that's just for recovery. The actual setup involves scanning a QR code in the Authenticator app, which is the seed for the TOTP - http://en.wikipedia.org/wiki/Time-based_One-time_Password_Al...


Yes, but they show you that QR code only AFTER you gave them your phone number and typed in the confirmation code.


Which is why I provide my Google Voice number for this purpose. Works perfectly!


I know it is not a perfect solution but there is an Authenticator app that you can use on Android. I believe that iOS might have one too but I am not sure.

This solution does not require you to give them your phone number :).




Consider applying for YC's Fall 2026 batch! Applications are open till July 27.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: