#2fa
● [Old] ● #Teleport #ProprietarySoftware ☞ How to Set Up SSH #2fa (Two-Factor Authentication) https://goteleport.com/blog/ssh-2fa-tutorial/
Why using a password manager with MFA is key, and should be compulsory
https://twitter.com/RachelTobac/status/1352409636792492035?t=F8DZ_6Bk6YtRI-X0j38sFQ&s=19
#security #passwordmanager #mfa #2fa
To reach the ~youth~ we're going to have to make infosec sea shanties, aren't we? Guess so!
— Rachel Tobac (@RachelTobac) January 22, 2021
Behold the tale of kid who reuses their passwords & ends up pwn'd, then learns how to stay safe. We're on a mission to encourage unique passwords stored in a password manager with MFA on. pic.twitter.com/QDL9cjUOiC
#TwoFactor #Surveillance and #FakeSecurity Practices • Techrights ⚓ http://techrights.org/2021/12/27/two-factor-surveillance/ ䷉ #Techrights #2FA | ♾ Gemini address: gemini://gemini.techrights.org/2021/12/27/two-factor-surveillance/
#techrights will be writing about #5g and #2fa soon. Lots of #misinformation on those topics, so #factchecking needed and clearer explanation/s.
#2FA is a #BigTech Scam! You Must Resist! ⚓ https://odysee.com/@RobBraxmanTech:6/2fascam:e ䷉ #RobBraxmanTech ought not say “Big Tech” http://techrights.org/2021/06/29/microsoft-behind-big-tech-narrative/
Strong passwords, 2FA, and #GNOMEAuthenticator https://baronhk.wordpress.com/2021/11/17/strong-passwords-2fa-and-gnome-authenticator/ #2FA has its own problems...
#2FA is typically junk or worse https://www.schneier.com/blog/archives/2021/10/problems-with-multifactor-authentication.html
● NEWS ● #uniToronto ☞ We've migrated from #Yubikey #2FA to the university's #MFA https://utcc.utoronto.ca/~cks/space/blog/sysadmin/OurYubikeyToMFAMove
If you’re still using texts for 2FA, it’s time to change to an app - Many banks are ditching the use of verification via texts
Good article explaining the risks today of using texts for second-factor authentication. E-mails are no better as they can be delayed and are usually in plain text.
Note too that although there is often mention of the Google Authenticator app, you can actually use any authenticator app, even to authenticate into Google services. I prefer to use Authy as it has consistently been ahead of Google's own app, having search capability, easily replication between multiple devices (or to new devices) including my desktop.
Some password managers like LastPass, 1Password and Bitwarden have built-in support for 6-digit authentication already that not many folks are aware of.
Most popular services on the Internet today offer authenticator app support, so you want to spend a minute on each just setting it up - you won't have to thank yourself later as you're probably unlikely to have those accounts hacked in future.
See There’s a better way to protect yourself from hackers and identity thieves