There is a bug in 2FA in Lemmy. In every implementation of TOTP, the account is not locked under 2FA until the server verifies at least one TOTP password. In Lemmy, if the user is unable to set up 2FA on his device, and quits the session, he is locked out of his account.
this post was submitted on 08 Jul 2023
0 points (NaN% liked)
Asklemmy
43760 readers
1084 users here now
A loosely moderated place to ask open-ended questions
Search asklemmy ๐
If your post meets the following criteria, it's welcome here!
- Open-ended question
- Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions. Assume best intent and be excellent to each other.
- Not regarding using or support for Lemmy: context, see the list of support communities and tools for finding communities below
- Not ad nauseam inducing: please make sure it is a question that would be new to most members
- An actual topic of discussion
Looking for support?
Looking for a community?
- Lemmyverse: community search
- sub.rehab: maps old subreddits to fediverse options, marks official as such
- !lemmy411@lemmy.ca: a community for finding communities
~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~
founded 5 years ago
MODERATORS
Hi there! Looks like you linked to a Lemmy community using an URL instead of its name, which doesn't work well for people on different instances. Try fixing it like this: !asklemmy@lemmy.ml
Oh boy, the bots have arrived
Ah shit.
Iโm using Memmy and neither of the links function properly for me lol.
Im using a regular ass chrome app thingy and both work haha. Hope the apps catch up soon