|
|
|
|
|
|
by Aachen
295 days ago
|
|
|
Because it requires access to the email system, that's a separate system even if it's being forwarded so long as you have a valid login to the email server But, yes, the exact boundary is definitely debatable. It's clearly less secure than a separate token generator that you keep on your body at all times; clearly more secure than no second confirmation at all |
|
|