Results 1 to 9 of 9

Thread: Two-Factor Authentication

  1. #1
    Chasing the Horizon RJ's Avatar
    Join Date
    Jan 2014
    Location
    Ocala FL

    Two-Factor Authentication

    Does p-f provide the option for Two-Factor Authentication (2FA) for accounts? I checked in where I thought I could find this option, and didn't see it. If someone knows where I can enable this, please let me know.

    If not, are there any plans to update the site to provide this feature? If not, why not?

  2. #2
    Site Supporter
    Join Date
    Jan 2012
    Location
    Fort Worth, TX
    Curious why 2FA would be worth the effort here @RJ

    I certainly use it where available on financial sites and places that store credit card information.....
    "No free man shall ever be debarred the use of arms." - Thomas Jefferson, Virginia Constitution, Draft 1, 1776

  3. #3
    Chasing the Horizon RJ's Avatar
    Join Date
    Jan 2014
    Location
    Ocala FL
    Quote Originally Posted by RoyGBiv View Post
    Curious why 2FA would be worth the effort here @RJ

    I certainly use it where available on financial sites and places that store credit card information.....
    I'm moving towards 2FA for all sites where possible, including social media, for privacy reasons.

    It's possible I missed the option in the account settings, hence my question.

    By the way, the @ function appears to be broken, still.

  4. #4
    Site Supporter HeavyDuty's Avatar
    Join Date
    Sep 2016
    Location
    Not very bright but does lack ambition
    The @ function is working for me…
    Ken

    BBI: ...”you better not forget the safe word because shit's about to get weird”...
    revchuck38: ...”mo' ammo is mo' betta' unless you're swimming or on fire.”

  5. #5
    Site Supporter HeavyDuty's Avatar
    Join Date
    Sep 2016
    Location
    Not very bright but does lack ambition
    @RJ tagging test
    Ken

    BBI: ...”you better not forget the safe word because shit's about to get weird”...
    revchuck38: ...”mo' ammo is mo' betta' unless you're swimming or on fire.”

  6. #6
    Chasing the Horizon RJ's Avatar
    Join Date
    Jan 2014
    Location
    Ocala FL
    Quote Originally Posted by RoyGBiv View Post
    Curious why 2FA would be worth the effort here @RJ

    I certainly use it where available on financial sites and places that store credit card information.....
    Quote Originally Posted by HeavyDuty View Post
    @RJ tagging test
    Not to get this further off topic, but no, the @ function (or at least mine) is not working consistently...as mentioned here last August.

    https://pistol-forum.com/showthread....ms-to-be-broke

    I don't see much different, it works sometimes, sometimes not. You can see this in the above two posts. But I'm not too worried about it.

  7. #7
    Member
    Join Date
    Jun 2019
    Location
    out of here
    Quote Originally Posted by RJ View Post
    Not to get this further off topic, but no, the @ function (or at least mine) is not working consistently...as mentioned here last August.

    https://pistol-forum.com/showthread....ms-to-be-broke

    I don't see much different, it works sometimes, sometimes not. You can see this in the above two posts. But I'm not too worried about it.
    Dude. It works fine. It just requires understanding of what it entails.

    For your initials it requires a trailing space to activate the function.

    So if I say @RJ adding a space afterwards will work but if I use a standalone…

    @rj

  8. #8
    Member
    Join Date
    Mar 2011
    Location
    SC
    The administrative overhead would be a bit insane.

    From a licensing perspective / enrollment perspective. They’d need to use probably SMS-texting (that’s token based for DUO and included in subscription services with Microsoft Authenticator) and/or pushes via an application (such as DUO, OKTA, Microsoft Authenticator, etc. but that’d be licensed).

    Legitimate businesses struggle with MFA enrollment - it’d be hard for a volunteer-admin staff to support it. There may be some cheap 3rd patty solution, but I think pretty much some corporations and financial organizations use MFA.

    Plus Practically speaking from a security perspective if your password was compromised - your PM’s and ability to perform malicious posts are what’s at risk here if your account was compromised. All of that could be remediated with an email/PM/thread to the moderators. For your site supporter they forward you out to a store front to gather your financial data.

    I just say that to give some security context that this would be a concerted effort (I’ve secured hospitals, corporations, .gov entities with MFA) that practically speaking secures information we’re already sharing on a public forum.

    Not trying to poo-poo the idea but just help justify for the admin staff why this may not be a reasonable ask.
    God Bless,

    Brandon

  9. #9
    We don’t.
    Bert Gummer is my spirit animal

User Tag List

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •