The confusing part about online security is knowing *when* it's safe to give your SMS two-factor auth codes to a third party.

@aaronpk I’ve been sticking them in 1Password alongside everything else. 🤫

@danj I mean the one-time codes you get via SMS that include a message like "don't give this code to anyone"

@aaronpk Like, never?

@geewiz Someone should tell the banks in the US that 😜

@aaronpk i don’t think it will ever happen, but I will be glad to see SMS two-facto auth codes go away completely.