Every time you log in to traderoute using 2FA the decrypted text starts with: "This PGP challenge code is only valid for traderouteilbgzt.onion:" From a cryptographic viewpoint this seems like a bad habit. (See movie Imitation game, how enigma was cracked in WW2 :P ) This is just intuition, I would feel safer if it just showed the code. Maybe someone with a better understanding can shed some light. thanks.
CGMC also has extra text in their 2FA messages, I believe it's main purpose is to help out the idiots who have no idea what the random string is or what to do with it. Yes, many of those people exist.
Just sucks I can't Cntrl-A Cntrl-C like on HANSA. #DarkNetProbz