yeah gross. I just finished moving everything off Gmail because they are forcing...

pachouli-please · 2025-04-15T16:01:05 1744732865

you moved off gmail due to forced mfa of all things? interesting...

also, aren't 'app passwords' or whatever they call it still a thing?

sebmellen · 2025-04-15T16:11:20 1744733480

They won’t allow you to use regular TOTP alone. You always have to link a phone, even for Google Workspace. It sucks!

artooro · 2025-04-15T17:01:56 1744736516

This is not true. In some organizations I work with they only allow Security Keys on Google Workspace, you can't even use TOTP. It's possible to disable SMS and Phone verification, but if you allow TOTP then Google Prompt is also automatically allowed.

fauigerzigerk · 2025-04-15T19:00:48 1744743648

Neither my Google Workspace account nor my personal Gmail account has a phone number.

38 · 2025-04-15T16:05:05 1744733105

yes I don't like security decisions forced upon me, that's reasonable. if I want a throwaway email, I don't need MFA because I don't care if the account is compromised. but I don't get to make that decision because Google decided for me that my account will have forced MFA

fauigerzigerk · 2025-04-15T19:14:24 1744744464

>if I want a throwaway email, I don't need MFA because I don't care if the account is compromised.

But Google cares if their servers are used to send spam or worse, because it makes their email service less useful for other users who may not use it as a throwaway account.

shpingbing · 2025-04-15T17:03:16 1744736596

I imagine it's because they would be (legally) responsible for any malicious usage of your account.

stonogo · 2025-04-15T17:31:10 1744738270

Based on what? Have the laws changed, or has there been a recent ruling on something related to this?

38 · 2025-04-15T17:43:36 1744739016

"I imagine" which means they have no idea what they are talking about