Have you turned on 2-Step Verification for your account?

  • Yes

  • No, because ...

Results are only viewable after voting.

SHvFl

Level 35
Content Creator
Trusted
Verified
Don't think anyone cares to get my MT account and if it did the damage would be minimal so I didn't enable it. It's a good thing you added it though for important accounts and especially staff members. Getting such accounts can create issues.
tl;dr 2-step hassle outweighs the importance of securing an MT account for me
 

Jack

Administrator
Staff member
Verified
Don't think anyone cares to get my MT account and if it did the damage would be minimal so I didn't enable it. It's a good thing you added it though for important accounts and especially staff members. Getting such accounts can create issues.
tl;dr 2-step hassle outweighs the importance of securing an MT account for me
@SHvFl, yes the account doesn't have sensitive information, but we do send the license keys when you win a giveaway via the Conversation system, and also members may have private conversations that they would not want someone else to read. The staff has 2-Step Verification enabled, however I think that because this is a forum based on security discussions it should be enabled by most members. This is the equivalent of a HIPS for your computer protection.
The login process with the 2-Step Verification it's free, it's easy to use and it's an extra layer of protection. :)
 

SHvFl

Level 35
Content Creator
Trusted
Verified
@SHvFl, yes the account doesn't have sensitive information, but we do send the license keys when you win a giveaway via the Conversation system, and also members may have private conversations that they would not want someone else to read. The staff has 2-Step Verification enabled, however I think that because this is a forum based on security discussions it should be enabled by most members. This is the equivalent of a HIPS for your computer protection.
The login process with the 2-Step Verification is very easy to do (for 30 days you will not be asked for a code again), and there is no reason in the world not to have it enabled. It's free, it's easy to use and it's an extra layer of protection. :)
I get it's one time thing for a lot of time but still. To get my account you need to brute force me so good luck or hack the site. So the danger is minimal and the information i have on it are even less important.
Assuming you limit the tries for someone to guess the password with a timer and keep the forum on the latest version i am fine. So if i get hacked it's you to blame :D
Note to all. All important accounts should have 2-step on even if it's a hassle.
 

Jack

Administrator
Staff member
Verified
I get it's one time thing for a lot of time but still. To get my account you need to brute force me so good luck or hack the site. So the danger is minimal and the information i have on it are even less important.
Assuming you limit the tries for someone to guess the password with a timer and keep the forum on the latest version i am fine. So if i get hacked it's you to blame :D
Note to all. All important accounts should have 2-step on even if it's a hassle.
:):):)(y)(y)(y)
 

upnorth

Level 28
Content Creator
Trusted
Verified
the account doesn't have sensitive information
What's not sensitive or meaningless/useless to some can be the very opposite to others. Personal I actually care about some of my data and information on this forum and wouldn't like if that got it in the wrong hands.

That 2FA been a part of this forum a long time is very smart IMO. One very important part if one use it, save the backup codes as not even the staff can save you if things goes wrong.
 
Last edited:

Moonhorse

Level 24
Content Creator
Verified
I have 4g modem. I have some games i play with authenticator and i can use the 30 day trust option without problems.

But when im using browser and sign in to sites like instagram, gmail and now malwaretips, everytime i close firefox my cookies / data gets removed as i have set it up to do. I have to enter authenticator every single time again, wich is bit frustrating...how do you guys handle this?

Usually when i exit computer, i always do clear history, data, cookies, everything
 

silversurfer

Level 46
Content Creator
Trusted
Malware Hunter
Verified
But when im using browser and sign in to sites like instagram, gmail and now malwaretips, everytime i close firefox my cookies / data gets removed as i have set it up to do. I have to enter authenticator every single time again, wich is bit frustrating...how do you guys handle this?

Usually when i exit computer, i always do clear history, data, cookies, everything
Just keeping cookies from MalwareTips into your browser, You can set malwaretips.com to the cookies-whitelist inside Firefox:
 

Attachments