Nah, for some of us, it's a talent and a calling.
Look:
055573
748391
663830
I know, I'm an artist. It's OK to be in awe.
this post was submitted on 23 May 2025
215 points (84.8% liked)
Showerthoughts
34540 readers
904 users here now
A "Showerthought" is a simple term used to describe the thoughts that pop into your head while you're doing everyday things like taking a shower, driving, or just daydreaming. The most popular seem to be lighthearted clever little truths, hidden in daily life.
Here are some examples to inspire your own showerthoughts:
- Both “200” and “160” are 2 minutes in microwave math
- When you’re a kid, you don’t realize you’re also watching your mom and dad grow up.
- More dreams have been destroyed by alarm clocks than anything else
Rules
- All posts must be showerthoughts
- The entire showerthought must be in the title
- No politics
- If your topic is in a grey area, please phrase it to emphasize the fascinating aspects, not the dramatic aspects. You can do this by avoiding overly politicized terms such as "capitalism" and "communism". If you must make comparisons, you can say something is different without saying something is better/worse.
- A good place for politics is c/politicaldiscussion
- Posts must be original/unique
- Adhere to Lemmy's Code of Conduct and the TOS
If you made it this far, showerthoughts is accepting new mods. This community is generally tame so its not a lot of work, but having a few more mods would help reports get addressed a little sooner.
Whats it like to be a mod? Reports just show up as messages in your Lemmy inbox, and if a different mod has already addressed the report, the message goes away and you never worry about it.
founded 2 years ago
MODERATORS
Oh wow. I've seen a few of yours.
Stunning
They're comforted by the knowledge that at least they're not the guy who installs indicators on BMWs.
“I make a product that will never be used. FML.”
Hahaha, I freaking snorted at this one!
I hate to tell you this, but it’s a factory full of children in China. Those tiny fingers can churn out the codes.
Hopefully soon AI will arrive and save them poor children from that awful life.
Bit like Thatcher did for British miners…..
ya'll are weird this is how i get income i have an offshore account teeming with crypto from my two-factor homey just gotta take a shit over there in that bush right now
My guy was really lazy the other day. He just sent me back my phone number as a code.
Excuse you. This is shit posting from the loo. Not a shower thought.
Is that a community already?
I hate that guy/gal. RCS end to end encryption is already a thing and they didn't enable it. SMH my head 🤦♂️
The people who downvoted this are the same people that I think Puscifer were singing about in "The Remedy".
Fun fact those are actually emailed most of the time. MMS format your [email protected]
Which is why they can sometimes get delayed for hours
Deeply incorrect as most carriers have the SMS/MMS gateways disabled by default. Eg, you have to enable that function on Verizon. Also you'd see an email as the sending party, not a phone number/shortcode
I mean I use the system literally daily but okay I don't know if we're an approved sender or what or how that works. I just know it gets sent out in an email.
You can use something and still fundamentally not understand it...
Here's an example of a message that's send the way you describe. Note the fully shown email address in the from field at the top.
And here's a real 2fa short code message. This was not send via email, this was a registered shortcode number that would be registered with your telephone provider.
Notice that the real 2fa message doesn't show a full email address as the sender?
If your company is relying on the sms/mms mail gateways, then you are not going to be able to reach most of your clients. Here's the top 5 carriers in the USA.
Verizon (146 Million users) was opt-in for me (I had to turn it on in order to get my cloudflare alerts to work, can't rely on email when I'm specifically monitoring the email server). For those who have Verizon, text "status" to 4040 to see if your gateway is active! (https://www.verizon.com/about/account-security/email-to-text-faqs). Though it is entirely possible that it's no longer opt-in or has changed defaults over time... possible even repeatedly, my account is very old...
T-mobile's (131 million users) gateway is opt-out last I checked. Meaning that a lot of people will find it once after getting some spam and turn it off.
ATT (118 million users) turned theirs off outright... https://www.att.com/support/article/wireless/KM1061254/
Boost (7 million) mobile relies on AT&T... See above.
US Cellular (4.4 million) - looks like it's working.
These are the five biggest carriers in the USA, with 3 of them default to "no"... If you're trusting this function to work for your users, then you're in the wrong from an IT perspective.
Another reason you know that most companies do not use this mechanism for 2fa... 2fa pins expire. Can't send 2fa pins that take "A couple of hours" to arrive when that pin expires in 10-15 minutes for most services.
Most sms texts come from registered services like twilio (https://www.twilio.com/en-us/messaging/channels/sms/short-codes), ez texting, salesmsg, textmagic, simple texting, slicktext, textla, etc... For the ones I've interacted with, you use their APIs to send messages, and the messages always come from a shortcode or normal phone number, never from an email address. I've never... ever ever... received an MFA pin from an email address. Always short codes or full phone numbers.
Edit: typo
You have typed a lot to not have made an impact at all. The entire Crux of your argument is that you don't see the message arrive as an email. That would be because it gets translated from email format to mms before it arrives on your end. Yes receiving a code 4 hours after is a problem, no the code will not work at that point. Again I do not know the specifics of how it operates on the back end once it is sent out but please do not try to talk down to me about how one of the duties at my job works. I highly doubt your assumptions are correct as I use the service to send 2fa weekly while on live calls with cx. I have never once stopped to ask which phone carrier the cx is using. Many of my company's clients are international.... Yet mysteriously they can all receive the texts that I'm sending via an email. However there have been some cases with super small regional carriers where the message is massively delayed.
The entire Crux of your argument is that you don’t see the message arrive as an email.
This isn't a Crux... All of the mail gateways work this way.
Fun fact those are actually emailed most of the time. MMS format your [email protected]
You stated this... You stated that it's phonenumber@carriergateway.
This is how they work. They show the email address.
I have never once stopped to ask which phone carrier the cx is using.
This doesn't even jive with your initial statement... how do you fill in the carrier.tld part if you have no idea what carrier the customer is on?
Your own story doesn't make sense anymore.
Yet mysteriously they can all receive the texts that I’m sending via an email.
And yet I've shown you MILLIONS of customers in the US alone, direct from the carrier, that will not receive that message as that service DOES NOT exist for them outright... This is literally 1/3 of the US, with another 1/3 that is likely opt-in.
Edit:
Yet mysteriously they can all receive the texts that I’m sending via an email.
Yes, because you're not doing it the way you claim you're doing it... I've already told you that the way it's done in industry is through SMS services like twilio or through registered short-code services. And those are API interactions, not email. You're not using the carrier gateway service. These services have strict KYC requirements that the email gateways never did. You might make your own gateway for email bridging, but at that point it's not the [email protected] that you've claimed, and that email bridge that you develop would be a registered short-code/phone number and interact as a normal SMS/MMS message. I wouldn't suspect this based on your explanation either as it wouldn't take hours for your own email bridge to handle an email from your own infrastructure, or if it does... your IT team probably sucks (probably not even by their own fault). This wouldn't require you to know the carrier the user is on since twilio would just be translating/sending it as a normal SMS/MMS. https://www.twilio.com/en-us/blog/build-sms-email-bridge-python-fastapi-twilio as an example. But once again... this has nothing do with your claimed [email protected] function which is the carrier sms gateway which doesn't work as you've stated these days.
at some point, he just started smashing his head on the keyboard
Me too thanks
Reminds of of these 
At least we know where he got them ...
Imagine having to think of a new 6-digit number every few seconds!
Just go sequentially
Write them all down on the first day, then just reuse the list. Don't get caught.
8675309......dammit, thats too many numbers....
How do you know my Lemmy password?
Hey, do you know Jenny too?!
Yeah those 2FA guys have it the worst
I have actually have the codes in two different apps since ones behind an account so not only does the little elf in my phone have the to think of new numbers he has to make sure the numbers are synced up
Sounds exhausting