Madlaine

My adventurers (who live with me currently) already learned two things:

• A smirking DM is a bad sign
• laughter and a “why shouldn’t I try this?” while preparing the next session is an even worse sign.

I was never really a power-hungry guy, but nothing gives a more powerfull feeling than grinning and throwing the dice while my adventurers wait for wtf is happening.

On that note, the goose of war meme was quite inspirational.

2FA is just a second password and has nothing to do with encryption. Can simply be removed.

They could bypass this authentication without problems, if they want. I lost my phone and my google business account got restored regardless of 2FA. It’s just a button for the support. The problem is the identification, especially of private customers (dunno if they would even do that).

Encryption passwords aren’t time-based either, they must be static.

Every now and then is every 90 days.

I see he is using a simple Self-signed one; they’re often quite easy to automate. While just tangential to my proficiency I could have a quick chat with him and then throw the appropriate tutorials for the specific hosting solution (and a helping hand, if needed) at him to never have to renew it manually again.