Two-Factor Authentication

RJ · 08-29-2022, 06:09 AM

Does p-f provide the option for Two-Factor Authentication (2FA) for accounts? I checked in where I thought I could find this option, and didn't see it. If someone knows where I can enable this, please let me know.

If not, are there any plans to update the site to provide this feature? If not, why not?

**RoyGBiv** · 08-29-2022, 06:51 AM

Curious why 2FA would be worth the effort here @RJ

I certainly use it where available on financial sites and places that store credit card information.....

RJ · 08-29-2022, 08:34 AM

Originally Posted by RoyGBiv

Curious why 2FA would be worth the effort here @RJ

I certainly use it where available on financial sites and places that store credit card information.....

I'm moving towards 2FA for all sites where possible, including social media, for privacy reasons.

It's possible I missed the option in the account settings, hence my question.

By the way, the @ function appears to be broken, still.

**HeavyDuty** · 08-29-2022, 09:00 AM

The @ function is working for me…

**HeavyDuty** · 08-29-2022, 09:00 AM

@RJ tagging test

RJ · 08-29-2022, 09:12 AM

Originally Posted by RoyGBiv

Curious why 2FA would be worth the effort here @RJ

I certainly use it where available on financial sites and places that store credit card information.....

Originally Posted by HeavyDuty

@RJ tagging test

Not to get this further off topic, but no, the @ function (or at least mine) is not working consistently...as mentioned here last August.

https://pistol-forum.com/showthread....ms-to-be-broke

I don't see much different, it works sometimes, sometimes not. You can see this in the above two posts. But I'm not too worried about it.

**JCN** · 08-30-2022, 12:27 PM

Originally Posted by RJ

Not to get this further off topic, but no, the @ function (or at least mine) is not working consistently...as mentioned here last August.

https://pistol-forum.com/showthread....ms-to-be-broke

I don't see much different, it works sometimes, sometimes not. You can see this in the above two posts. But I'm not too worried about it.

Dude. It works fine. It just requires understanding of what it entails.

For your initials it requires a trailing space to activate the function.

So if I say @RJ adding a space afterwards will work but if I use a standalone…

@rj

**BWT** · 08-30-2022, 01:21 PM

The administrative overhead would be a bit insane.

From a licensing perspective / enrollment perspective. They’d need to use probably SMS-texting (that’s token based for DUO and included in subscription services with Microsoft Authenticator) and/or pushes via an application (such as DUO, OKTA, Microsoft Authenticator, etc. but that’d be licensed).

Legitimate businesses struggle with MFA enrollment - it’d be hard for a volunteer-admin staff to support it. There may be some cheap 3rd patty solution, but I think pretty much some corporations and financial organizations use MFA.

Plus Practically speaking from a security perspective if your password was compromised - your PM’s and ability to perform malicious posts are what’s at risk here if your account was compromised. All of that could be remediated with an email/PM/thread to the moderators. For your site supporter they forward you out to a store front to gather your financial data.

I just say that to give some security context that this would be a concerted effort (I’ve secured hospitals, corporations, .gov entities with MFA) that practically speaking secures information we’re already sharing on a public forum.

Not trying to poo-poo the idea but just help justify for the admin staff why this may not be a reasonable ask.

**LittleLebowski** · 08-30-2022, 01:37 PM

We don’t.

Thread: Two-Factor Authentication

Thread Tools

Search Thread

Two-Factor Authentication

User Tag List

Posting Permissions