@tao right but the problem is that by forcing users to do 2FA by SMS, you force them to have a mobile phone and thus force them to be vulnerable to this attack (certainly if in Europe, and Americans who choose GSM over CDMA are vulnerable)
.
Follow
@tao forcing ppl to have mobile phones also puts them at risk for wrongful convictions, as it recently turns out: https://www.theguardian.com/world/2019/sep/12/denmark-frees-32-inmates-over-flawed-geolocation-revelations
