I've been told to enable the Server Discorvey system you need to have 2FA (Two-Factor Authentication) enabled. I understand that it's to protect the staff members from getting their account hacked, and the 2FA is supposed to help protect the account. Though in my opinion, the risks are too high to enable it.
First of all, this is just forcing the staff member to enable 2FA. 2FA makes sure that your account has another way of protecting it, but does it really protect you? If you lose your codes, you lose your account alongside it if you don't have it logged in into Discord. I'm aware that I can write down the codes and hope not to lose it, but forgetting where you put it is also a thing.
Second of all, there's no way to return your account if you've lost the code. This system is usually based on a third party device. If the smartphone is factory reset or lost, or authenticator application is deleted accidentally, the token would be lost and it's recovery is very unlikely. And this is all just to be able to moderate a server (Delete messages, change other people's username, manage roles, etc...).
Lastly, the application itself you're using can get hacked as well. This 2FA system doesn't fully protect your account as it's supposed to. Forcing the staff members who are against using the 2FA system to enable it just for Server Discovery isn't fair for the staff. This is changing our own user setting for a small help in advertising.
To conclude this all, I believe that requirement should be removed. It's unfair for the staff member to take all this high risk of losing their account and what's in it for this thing.
Please sign in to leave a comment.