Board Thread:General Discussion/@comment--20150810171627/@comment-1757994-20150810205733

MichiRecRoom wrote: Shining-Armor wrote: Would it be possible to implement 2FA as an optional thing you turn on? No, see this reply from DaNASCAT. An even better reason is that if it's optional, it can be turned off. Unless turning it off is at least as hard as providing the 2nd factor, the 2nd factor is useless. You can apply the same logic to so-called account recovery hints (at any number of sites) to see that they weaken security, not enhance it. Unless the administration of a site is truly committed to 2-factor, it's not an improvement. This is not an indictment of 2-factor. It's an indictment of the administration of most sites.