alt Hacker News> I should never be in a situation where there is an unexpected login I need to verify.
Isn't that kind of the point? If someone else is trying to login somewhere with your credentials, your two factor will ping up?
Replies
tardedmeme • today at 7:46 AM
I saw a new marketing strategy recently: Someone tried to sign into something with my email. I didn't have an account, so they took the excuse to send me an email asking me to create an account.
➕ show 1 reply
zem • today at 8:07 AM
huh, is that why my google authenticator app pops up randomly? i always figured it was a bug in the app or in android.
Why would I want that? If it is not me, I am not going to allow the login. Making it a notification makes it more likely I could fat finger an approval.
I guess you can make the argument that you are then made aware of login attempts, but that feels more like something the host service should control.