@tqbf @taviso @thenthj it's fair, but you're describing "we just need people to do this really difficult thing and they'll be safe" with hardware 2fa on a smartphone. Is that realistic? Until Apple gets their 💩 together, I'm comfortable with 2fa auth apps sufficiently raising the bar for '19