In a few weeks I’ll do a workshop about security for people who are tech illiterate, I plan to teach about password managers and 2FA.

If I show the 2FA number codes, like the 123 456 ones that I have to paste when required, can that be a possible security breach for me? or is it save since is gonna change in a few seconds anyway?

  • Lem Jukes@lemm.ee
    link
    fedilink
    arrow-up
    1
    ·
    1 year ago

    Is this being taught in a computer lab or will the students all have laptops or smartphones? If so I would almost be tempted to just walk them through all creating a temporary email address and then setting up 2fa on the accounts. But yeah Gmail accounts.

      • Lem Jukes@lemm.ee
        link
        fedilink
        arrow-up
        4
        ·
        edit-2
        1 year ago

        You can create endless Gmail accounts for free and google has several different 2fa options to choose from. So you could make one ‘2faClassDemoEmail@gmail.com’ or have each person on their own device create dummy Gmail addresses like ‘StudentName2FADemo@gmail.com’ and have each student go through the process individually. They would only be temporary in that you’d just stop using it after the class and google would eventually get rid of it(maybe?) After long enough without any use. I don’t think you’re going to find something that just generates dummy 2fa codes for demo purposes.