We are a group of hobbyists managing a mailing list. Mailchimp insists on SMS authentication to login now which has scuppered our plans to spread the workload.

Are there any free / cheap services that would receive a text messages and forward it by email to several people? If not, is there an alternative way to deal with this situation? We’re not necessarily attached to mail chimp but delivery is important.

  • Successful_Try543@feddit.org
    link
    fedilink
    arrow-up
    1
    ·
    edit-2
    2 months ago

    Beside it’s inefficient to send text data as an image, why does it make a difference?

    If the app has offers option to open an image with a QR code, IMHO it is more convenient, to send the image of the QR code (I’d try ‘save image as’ instead of a screenshot though). When sending text, you and the recipient manually have to copy the information and the recipient also has to paste it into the right field.

    • helenslunch@feddit.nl
      link
      fedilink
      arrow-up
      1
      arrow-down
      1
      ·
      2 months ago

      why does it make a difference?

      1. Because if you scan it, it is saved into your app and not stored anywhere else. If you take a photo of it, it’s saved into your camera roll, which is a security vulnerability. Same goes for the other party.

      2. What is the other party supposed to do when they receive it? They can’t scan their phone screen with their phone camera…?

      • Successful_Try543@feddit.org
        link
        fedilink
        arrow-up
        1
        ·
        edit-2
        2 months ago
        1. Because if you scan it, it is saved into your app and not stored anywhere else. If you take a photo of it, it’s saved into your camera roll, which is a security vulnerability. Same goes for the other party.

        Why should anyone take a camera to take a screenshot or click on ‘save image’? Additionally, the secret key would be stored as well on the messenger app you are using to share the key among the group members.

        1. What is the other party supposed to do when they receive it? They can’t scan their phone screen with their phone camera…?

        Aegis, e.g. can open images containing a QR code and import the key that way. I assume other apps can do the same.

        • helenslunch@feddit.nl
          link
          fedilink
          arrow-up
          1
          ·
          2 months ago

          Why should anyone take a camera to take a screenshot or click on ‘save image’?

          They shouldn’t, but that’s what you said…

          Aegis, e.g. can open images containing a QR code and import the key that way. I assume other apps can do the same.

          Never used one that does that.

          • Successful_Try543@feddit.org
            link
            fedilink
            arrow-up
            1
            ·
            2 months ago

            Why should anyone take a camera to take a screenshot or click on ‘save image’?

            They shouldn’t, but that’s what you said…

            If you take a photo of it, it’s saved into your camera roll

            ?

            Beside that, I agree that its a security issue to have the plain text or QR code stored somwhere else than in the authenticator app itself. Inerently, trying to circumvent the introduced security by the uniqueness of the TOTP authenticator by sharing the key, one way or another, is a security issue by itself. That’s why, I’ve recommended registering multiple independent authenticatior-keys, if possible, one per group member.