Well, at least you got a bit further than we did in the US with our most recent corrupt head of government.

Facebook Marketplace is pretty good though, at least in the US. All other Facebook features are rubbish

From a formal logic perspective, your statement is true. But in real life, the more important distinction is not between “true” and “false”, but between “purposefully deceptive and ungenuine disinformation” versus “outspoken dissenting viewpoint”. And that is one that people are really bad at telling the difference between, especially if the viewpoint in particular is one that they hold very strongly.

!asklemmy@lemmy.world has over 70 times as many subscribers as the other two asklemmy communities combined.

Password is necessary for two-factor authentication. The factors of authentication are something you know (like a password), something you have (like a cell phone), and something you are (like a biometric).

An example of three-factor authentication would be this—imagine a spy going into a secret bunker. They need to scan their iris, insert a key card, and then enter a passcode before the door opens. This has all three factors of authentication; the passcode is something they know, the key card is something they have, the iris scan is something they are.

If it just sends a code to your phone, that’s one-factor authentication (something you have). Anyone with your phone can get into your account. Unless, of course, your phone hides its notifications and you have a screen lock. Then that’s actually two-factor authentication because you also need to know the phone PIN or have the biometric.

If it just asks for a password, that’s one-factor authentication (something you know).

If it asks for your password and then sends a code to your phone, which you need a fingerprint or face scan to unlock, you have achieved three-factor authentication.

Edit: Interesting tidbit—in the USA, you can rent a mailbox at the post office to receive mail when you don’t want to give out your real address. Useful for privacy reasons. I’m sure they have similar things in other countries. These mailboxes come with a key. This is actually two-factor authentication, because the keys usually don’t have the mailbox number written on them! So you have to have the key and also have to know which mailbox among the hundreds at the post office it opens.

TOTP is standardised by RFC 6238 so all TOTP clients must comply with the standard and therefore work equally well. Pick the one whose UI you like the most and is otherwise good enough for your use case and personal preferences. It’s similar to arguments over CPU thermal paste—its presence or absence makes a much larger difference than the method of application.

You do, however, want to pick something that is free and open-source and also popular. Google Authenticator (closed source) definitely is a functional TOTP client but you have to trust that the Google engineers have done a good job building a secure app. Since it’s Google, they probably have, but a principle in security is that you should not have to trust more people than absolutely necessary.

Yes, but this is like replacing the front door of your house with a bank vault door. Yes, it’s more secure, but there is a point of “reasonably secure enough” for most people and at some point, you are just inconveniencing yourself for no tangible gain.

It’s not a hard concept. In almost every well-designed security system, the weakest links are invariably the humans

The passwords are stored locally. You can test this yourself by turning off your WiFi or disconnecting your Ethernet cable and then going to about:logins. All the passwords will still be there.

Try couriers in your country and see if they offer a similar service

In the United States, if you have a FedEx or UPS account and registered your address there, whenever someone generates a label bound for your address, it will show up on a list of packages bound for your address on the account.

A similar function for USPS is Informed Delivery but this only tells you when something was delivered.

Not a solution.

This not only has a time and effort cost attached to it but selling your used hardware to buy new hardware is always a bad value proposition.

That’s not a solution. It’s a way for you to avoid the problem. It does nothing to help the millions of people who are already deeply invested in the Apple ecosystem.