Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
bobbylarrybobby
on Dec 1, 2022
|
parent
|
context
|
favorite
| on:
Making unphishable 2FA phishable
My impression was that the device was repeatedly fetching site.com/auth/userid/session_id and waiting for a response with a token in it.
quickthrower2
on Dec 1, 2022
|
next
[–]
Yes, the RFC is quite readable and this is mentioned in the intro.
https://www.rfc-editor.org/rfc/rfc8628
mjg59
on Dec 1, 2022
|
prev
[–]
This is correct.
Join us for
AI Startup School
this June 16-17 in San Francisco!
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
