Have you ever used two factor auth?

Discussion in 'Chatterbox' started by Shriker, Sep 19, 2016.


What authenticators have you used?

  1. Google Authenticator

    10 vote(s)
  2. Duo - https://duo.com/

    2 vote(s)
  3. Authy - https://www.authy.com/

    3 vote(s)
  4. HDE OTP

    0 vote(s)
  5. Sound Login Authenticator

    0 vote(s)
  6. Steam Guard Mobile

    9 vote(s)
  7. Battle.net Authenticator / SMS Protect

    7 vote(s)
  8. Other

    6 vote(s)
  9. I've never used 2FA on my accounts (yet!)

    0 vote(s)
Multiple votes are allowed.
  1. Shriker

    Shriker Shadowlack Owner RPGfix Admin Patron Game Owner

    How many of you have used and set up 2FA on your online accounts? Are their any authenticators that you find to be an absolute nuisance? Any that are an absolute breeze to work with?

    If you haven't set up 2FA on any of your accounts, what has been preventing you from doing so?
  2. Star Army

    Star Army Resident Game Owner

    Absolutely! I use Google Authenticator for my important sites (Google, Microsoft, banking, domains (except GoDaddy, which they only use SMS), and my website.

    Two-factor auth is something I recommend for anyone who has admin powers over a forum. For non-HTTPS sites, especially, since logging in to an unencrypted site via wifi is equivalent to shouting your password across a crowded coffeehouse and anyone who knows what they're doing can then log on as you unless you have 2FA enabled.
  3. Death Kitten

    Death Kitten Teenage Mutant Ninja Turtle Game Owner

    I mostly have a mix of Google authenticator and sms for my two factor. I even have it enabled on here.

    The only time I find it annoying has nothing to do with the app and instead just having to switch between apps to get the code and input it.
  4. Susan Scuro

    Susan Scuro Newcomer

    I used two factor authentication on Blizzard. I find it irritating as hell but its nice to know that your accounts are protected.
  5. FizzyElf
    Caffeine Fix

    FizzyElf Newcomer Game Owner

    2-factor auth that depends on a mobile app set up in advance, with no back-up options, has more than once locked me irrecoverably out of accounts when I've lost my phone, I hate authenticator apps SO MUCH. 2-factor auth that uses a code sent via email or text message (especially text) is convenient and secure, and I set it up on any site or app that has the option.
  6. I have used 2FA for a lot of my accounts! Sometimes it can be quite annoying since I have a habit of browsing things in incognito mode, so it never keeps me logged in. I find the steam authenticator to be the most annoying since it's necessary to have the app instead of just having a text message sent.
  7. Boneshakers

    Boneshakers Newcomer Game Owner

    I use 2FA/MFA a lot, both professional and personally. When done right, they can make life easier and safer.. when done poorly however... >.>
  8. Sivvi

    Sivvi Newcomer

    Absolutely, and not just one either since I don't like putting all my eggs in one basket. I have at the most, 3 eggs in one basket. Two factor auth is the smartest thing I can think to do.
  9. FizzyElf
    Caffeine Fix

    FizzyElf Newcomer Game Owner

    UPDATE - so according to my IT manager, text-message 2FA is no longer considered fully secure, since text messages are sent unencrypted, and also SIM card spoofing is now relatively well-known technology among hackers. And, obviously, email can be hacked, so authenticator apps or dongles are the secure way to go. 2FA over email or text is still more secure than a password-only (and is still considered acceptable my our IT security guys), and using a password manager (LastPass has a free basic service) with random passwords for every site will also increase your account security a lot.

    Print your recovery codes and file them with your passport/etc so you don't loose them! (lesson learned) And I still won't use 2FA apps if they don't provide recovery options at all or nothing other than 'send Blizzard/Facebook your legal ID' - thanks but no thanks, I don't trust you idiots. I'll eat the data loss. (Side note, showing ID to an employee of a private company in person one thing, giving them a *copy* is another, and I better have a better reason than 'I like being level 80', yeesh. I get that the first isn't an option for online companies, but there are other things you could ask for like exact match of billing history or something? I dunno.)
    Star Army likes this.
  10. Jayde

    Jayde Newcomer

    Google Auth is my main one and my favorite ;3
    Star Army likes this.
  11. ShouldersofGiants100

    ShouldersofGiants100 Newcomer Game Owner

    2FA is used on pretty much any account I have linked to money. Rarely is it actually needed though. Your best bet is a password manager and a unique password for everything, alongside a couple of burner emails. If your passwords are random, they can never leak and most of the time brute forcing reaches "heat death of the universe" timeframes pretty damn quickly
  12. The number of 2FAs that have begun popping up is a blessing and a curse - I'm glad to keep information safe for my site (and myself) but hoooo boy can it be a pain if you lose the device/contact.
  13. I use 2FAs whenever possible. They can be annoying but it's worth it.
  14. I used to use it on Steam but, after an emergency phone number change, I am hesitant to do so again. I know they've added security benefits but... God, the headache when it goes sideways.