But, needing email verification all the time to white list a device will not be annoying anyone ? I agree that we need to bear this for the sake of better protection. Maybe some enhancement like once per day or anything similar to that may make this feature more stronger imho.
I don't think it is something annoying. BTW it only requires email verification for new device/IP/Browser. However you can opt it out if it is unnecessary or annoying for you. So far everyone is concerned about their security so I don't think most of them would go for that option.
Yeah, you can choose to use a 2FA code instead of email approvals if it becomes annoying. Or turn it off entirely which would weaken security of your account. I'd recommend everyone at least using some form of 2FA for the added security.
i think bitdice has really good security so why to put 2FA again? Emails sure pretty annoying but it is more secure than 2FA for some people. You can't do both of this? 2FA and email for both securty to make sure no one can even hack into our account?
2FA and Email is good combination for security purposes so if you cant decide you want to put then put the both for back up purposes i know you will have to work more about it because you are doing 2 features in your website but as long as we are talking about security you should work for it.
I don't think that it is a good combination of security purpose. Gamblers will find it annoying if that will work at the same time.
The same thing as it is being done with the exchange sites they are just choosing one from it, whether they will use 2fa or confirmation via email.
And I don't think bitdice will have that light security with those login protection as the devs know hackers will penetrate from behind not in front-end.