joshua

  • Aug 24, 2020
  • Joined Nov 16, 2019
  • Hi-fives: 49
  • In web access for the travelcard

    Why not just limit the API and web access?

    I only want to know my balance and be able to block the card. And that anytime.

    • In web access for the travelcard

      @Frank-Maroon-Eagle#161218 Exactly. Precisely this.

      I feel uncomfortable with anything more than a small amount on my card, since my phone is the only way to access the card. If both card and phone get stolen I cannot even block the card!

      • In web access for the travelcard

        @Joshua-Aquamarine-Unicorn#152334 Any thougts on this?

        • In What if I don't use my TravelCard?

          Already got a debit card for that :D

          • In What if I don't use my TravelCard?

            What if I do not use my TravelCard at all, since right now is a bad time for travel?

            Does Bunq cancel Accounts if they are not actively used and contain no funds?

            You know, #stayathome... :)

            • In Option to disable the total balance feature completely

              @smyles#152342 Just tried it with two devices. Android shows "0.00 €" while what you just posted is the iOS version.

              • In Option to disable the total balance feature completely

                @smyles#152238 I see "0,00 €"

                • In web access for the travelcard

                  I'd like to suggest web access to the TravelCard.

                  I mean... If I lose my phone I also lose access to my account. I just cannot use my account on the laptop.

                  • In TOTP

                    @LH-Black-Wolf#148145 Sure, the TOTP generator should not be on the same device.

                    • In TOTP

                      @Christian-Olive-Lion-1183283092#148138 Also, if you hurt yourself and the hand is bleeding it might prevent you from logging in

                      • In TOTP

                        @Christian-Olive-Lion-1183283092#148138 Good point

                        • In TOTP

                          @Joshua-Aquamarine-Unicorn#148136 So if someone gets access to the email and have the passphrase they cannot get in.

                          • In TOTP

                            A one time pad is made to be used ONCE. That's why it is a one time pad, even you get the credentials and the OTP, they will be invalid if already used once.

                            • In TOTP

                              @Sander#148127 But not an OTP. 🙄

                              • In TOTP

                                @pbruins84#148090 Still not the best.

                                Why not an additional factor?

                                • In TOTP

                                  @Gerhard-Yellow-Frog#148080 Also, right now login is based on a QR code OR a link I get via email.

                                  That means: Anyone who gets access to the email can login and and make transactions.

                                  Emails are not encrypted.

                                  There's a reason I'm not using bunq as my main bank yet and it is (mainly) security concerns.

                                  • In TOTP

                                    @LH-Black-Wolf#148073 For security reasons, of course.

                                    • In TOTP

                                      Bunq should support TOTP.

                                      That is the same OTP Google Authenticator uses.

                                      • In Source code / open source app

                                        Also, why not be the bank of the free AND the free software community?