How could 2FA be disabled if you need 2FA in order to login to disable it and my free OTP+ is biometric protected?
This was unfortunately an error on our end.
Please bear with us while we work on resolving this situation.
2FA has been restored for all LW users that had it enabled before and didn’t reactivate it on their own since.
There will be an announcement posted later on explaining what happened.
edit: announcement is out: https://lemmy.world/post/18503967
The server owner has complete control of your account.
They could very easily take control completely if they want.
This is what I thought. I keep telling people they don’t exclusively own their passwords / security tokens once they give it to a site.
If I shared encrypted info that I kept encrypted, I guess it would still be mine but no one could then read it.
Locking as this question violates rule 5.
