Bitcoin Forum
September 22, 2019, 07:22:59 PM *
News: Latest Bitcoin Core release: 0.18.1 [Torrent]
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: 2FA Security system can make bitcointalk for Safe and effective  (Read 169 times)
trickbdpro
Jr. Member
*
Offline Offline

Activity: 115
Merit: 1


View Profile
July 19, 2019, 02:33:58 PM
 #1

Bitcointalk is a most effective web site for us.
We give many many time here. Becuse, we learn many things from here and see Rare News on bitcointalk.
So, we can say bitcointalk is a dreamland for us.    
We need more and more security here.
  
When we Change our password or email address,  then 2FA code inescapable.Which generate by google authenticator or Related app.

I think it make bitcointalk more Safe.
1569180179
Hero Member
*
Offline Offline

Posts: 1569180179

View Profile Personal Message (Offline)

Ignore
1569180179
Reply with quote  #2

1569180179
Report to moderator
1569180179
Hero Member
*
Offline Offline

Posts: 1569180179

View Profile Personal Message (Offline)

Ignore
1569180179
Reply with quote  #2

1569180179
Report to moderator
1569180179
Hero Member
*
Offline Offline

Posts: 1569180179

View Profile Personal Message (Offline)

Ignore
1569180179
Reply with quote  #2

1569180179
Report to moderator
Make sure you back up your wallet regularly! Unlike a bank account, nobody can help you if you lose access to your BTC.
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1569180179
Hero Member
*
Offline Offline

Posts: 1569180179

View Profile Personal Message (Offline)

Ignore
1569180179
Reply with quote  #2

1569180179
Report to moderator
Royse777
Hero Member
*****
Offline Offline

Activity: 784
Merit: 958


Signature Sold Out!


View Profile
July 19, 2019, 02:39:26 PM
 #2

~snip~
  
When we Change our password or email address,  then 2FA code inescapable.Which generate by google authenticator or Related app.


Similar proposal was discussed in several occasions but I do not think the admin has this in their priority list. The best you can do is that sign a Bitcoin address and stake it in here. So in case anything goes wrong with your account, request the admin to unlock it.


The processes were slow before but since theymos introduced the cryptonies (please some one correct the name, I know I got it wrong) or something team - the account recovery is faster I believe.

.WOLF.BET.
▀  ▀▀▀▀▀▀
  ▀ ▀▀▀
 ▄ ▄▄▄  
  ▄ ▄▄▄
▄  ▄▄▄▄▄▄
        ▄▄▄▀▀▀▀▄▄▄
    ▄███▌        ▀▀▄
  ▄▀   ▐█████████▄  ▀▄
 ▄▀  ▄█████████████▄  █
 ▌  █████████████████  █
▐  ████████████████ ▄█
█  █████████████████████▌
▐  ██████████████████ ▀█▌
 ▌ ▐█████████████████▌ ▐▀
 █  ██████████████▀ ▄▀
  █   ███████████▀  ▄▀
   ▀▄▄██ ▀▀▀▀▀▀▀  ▄▄▀
     ▀██▄▄▄▄▄▄▄▄▀▀▀
▄███████████▄
███████    ████████████▄
███████    ███████   ▀██
██████████████████    ██
██    ██████████████████
██    ███████    ███████
█████████████    ███████
███████    █████████████
███████    ███████    ██
██████████████████   ▄██
██        ▀███████████▀
██
██
      ▄█▄         ▄█▄
 ▄██ ███ ███████ ███ ██▄
▐███▄ ▀ ▄███████▄ ▀ ▄███▌
▐█▌▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▐█▌
▐█▌   ▄▄▄▄▄▄▄▄        ▐█▌
▐█▌   ████████        ▐█▌
▐█▌       ███     ▄▄▀▀▀██▄
▐█▌      ███    ██▀      ▀█
▐█▌     ███    ███         █
▐█▌    ███     ███          █
 ██▄           ███▄         █
  ▀█████████████████▄     ▄█
                  ▀▀█████▀▀

████
██
██
██
██
██
██
██
██
██
██
████


.AFFILIATE PROGRAM.
   ...FREE FAUCET........
..CHAT RAIN.............
Xal0lex
Staff
Hero Member
*****
Offline Offline

Activity: 756
Merit: 930


View Profile
July 19, 2019, 02:45:42 PM
 #3

Bumping this again as I think this should be implemented before a year from now.

If someone wants to write a patch for it, I will seriously consider adding it. I believe that safely adding 2FA would be very time-consuming, so I'm not willing to do it myself or direct Slickage to do it.


The processes were slow before but since theymos introduced the cryptonies (please some one correct the name, I know I got it wrong) or something team - the account recovery is faster I believe.

Cryptios.


                      ▄▄█████▄▄
                    ▐████████████▄
                   ▄█▀▀▀▀▀▀▀██████▌
             █▄  ▄█▀           ▀▀█
              ▀▀▀███▄▄▄▄▄▄▄▄▄▄   █▄   ▄

               ▄▀▀         ▀▀▀▀▀▀▀██▀▀▀
         ▄▄▄▄▄█▄▄ ▄▀▀▄ ▄▄▄▄▄▄▄▄▄▄▄▄▄█▄▄▄▄
         ████▒▒███    ████▒▒████▌
    ▀█▄ ▀
███████▄ ███▒▒███      ██▒▒█████       ▀█▄
 ███████ ▀█▒▒████     ▄█▒▒█████▀         ▀█ ▄  ▄▄
  ██████  ▌▀▀█████▄▄▄███████▀▀            ███▄███▌
 █████████  █████▀▀█▀▀██████▌             ██████▀
 ▀█████████ ███▄  ███   ▐███▌ ▄██       ▄█████▀
     ▀▀    ▀▀███████████████▄▄████▄▄▄▄█▀▀▀▀▀
               ▀▀▀███▀▀▀      ██████▄
                               ▀▀▀▀▀

▄█████████████████████████████▄
███████████████████████████████
███████████████████████████████
███████████████████████████████
█████████▀▀█████████▀▀█████████
███████ ▄▀▀         ▀▀▄ ███████
██████                   ██████
█████▌     ▄▄     ▄▄     ▐█████
█████     ████   ████     █████
█████      ▀▀     ▀▀      █████
█████▄   ▀▄▄▄     ▄▄▄▀   ▄█████
████████▄▄▄█████████▄▄▄████████
███████████████████████████████
███████████████████████████████
███████████████████████████████
 ▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
█ █
█ █
█ █
█ █
█ █
rhomelmabini
Full Member
***
Offline Offline

Activity: 406
Merit: 129


I Mean It.


View Profile
July 19, 2019, 05:04:43 PM
 #4

<......>
Woah! That's been discussed long ago hoping many will be enlightened that theymos doesn't want considering to add it on the forum. Besides, admins are still active and with the Cryptios on the hidden spotlight doing some good jobs as well I guess it's better way like this that to provide the ownership of your account is to have a signed BTC address on the link as @Royse777 just mentioned.

▀▀▀▀▀▀▀▀▀▀▀▀─────────────    █▀▀ ▀▀█                                            ELAD NETWORK | YOUR TOKEN TO REAL ESTATE                                                            █▀▀ ▀▀█    ─────────────
▀▀▀▀▀▀▀▀▀▀▀▀▀─────────────      ██ ██     COMBINING BLOCKCHAIN, REAL ESTATE AND ARTIFICIAL INTELLIGENCE FOR A SMARTER WAY TO INVEST     ██ ██      ─────────────
▀▀▀▀▀▀▀▀▀▀▀▀▀▀─────────────█▄▄ ▄▄█                                                               ANN Thread | Twitter | Facebook | Telegram | Medium                                                                █▄▄ ▄▄█─────────────
Oyarebu
Member
**
Offline Offline

Activity: 182
Merit: 22

BitTrade Trade Commodities and Sports Futures usin


View Profile
July 19, 2019, 05:13:59 PM
 #5

<......>
Woah! That's been discussed long ago hoping many will be enlightened that theymos doesn't want considering to add it .......

May I correct nthat impression that Theymos never said he won't add it to the forum security but that, "it will be time consuming" so, if OP can help out with the patches then why not to add 2FA. But candidly speaking, you can't do that for the forum because you aren't good in programming
2FA is not a good security that can't be mess with or swim with when a hacker want to.......  Grin

TryNinja
Legendary
*
Offline Offline

Activity: 1134
Merit: 1470



View Profile
July 19, 2019, 05:50:24 PM
 #6

It has been said countless times that this will be available on the new forum software. Use the search bar before making a repetitive post.

pugman
Legendary
*
Offline Offline

Activity: 1568
Merit: 1373


Sliding in ya DM's be like


View Profile WWW
July 19, 2019, 09:25:08 PM
 #7

It has been said countless times that this will be available on the new forum software. Use the search bar before making a repetitive post.
To add on to this, SMF is soo old and outdated, alongside the fact that the forum is customized in such fuckall format that apparently adding 2FA to the forum isn't going to be really possible, many users have mentioned in the past but it's just never been implemented, which really sucks, but kinda have no other choice but to deal with it.

bluefirecorp_
Full Member
***
Offline Offline

Activity: 378
Merit: 117


View Profile
July 19, 2019, 09:30:10 PM
Last edit: July 19, 2019, 10:24:23 PM by bluefirecorp_
 #8

TOPT. Everyone google authentication installed. Nearly as secure as something you know. Makes it harder to break.

Someone build it in PHP, store it in mysql,  Huh, done.


How much would it cost? Like seriously. It allows people to download the master and uses time. Which fucking better work @serveradmins, because ntp is stupid simple.


https://github.com/PHPGangsta/GoogleAuthenticator

boop.

we're already using google's catcha shit, might as well suck its tit with 2fa.
tbct_mt2
Sr. Member
****
Offline Offline

Activity: 644
Merit: 398



View Profile
July 26, 2019, 09:38:05 AM
 #9

"2FA Security system can make bitcointalk for Safe and effective".
The forum is safe itself, and only forum users are unsafe with their personal issues, from careless clicking on links (includes phising links); arbitrarily visiting harzadous websites (like pornsites); enabling their emails in their forum profile pages and other places (bounties, campaigns, etc.); storing their account and email passwords online without secondary protections (such as passwords for sheets, or files they store accounts/ emails' passwords); don't have antivirus/ internet security softwares; and so on.

taufik123
Sr. Member
****
Offline Offline

Activity: 826
Merit: 256


First 100% Liquid Stablecoin Backed by Gold


View Profile WWW
July 26, 2019, 01:52:57 PM
 #10

not only those of you who have such thoughts for better security for the bitcointalk forum. Maybe the forum admin already has another decision to only use the security that is currently available. the most important email must be hidden in account information, and be careful with phishing websites.

bluefirecorp_
Full Member
***
Offline Offline

Activity: 378
Merit: 117


View Profile
July 26, 2019, 09:16:51 PM
Last edit: July 28, 2019, 11:40:53 AM by bluefirecorp_
Merited by tranthidung (1)
 #11

"2FA Security system can make bitcointalk for Safe and effective".
The forum is safe itself, and only forum users are unsafe with their personal issues, from careless clicking on links (includes phising links); arbitrarily visiting harzadous websites (like pornsites); enabling their emails in their forum profile pages and other places (bounties, campaigns, etc.); storing their account and email passwords online without secondary protections (such as passwords for sheets, or files they store accounts/ emails' passwords); don't have antivirus/ internet security softwares; and so on.

NIST:

 Authenticator Assurance Level 1: AAL1 provides some assurance that the claimant controls an authenticator bound to the subscriber’s account. AAL1 requires either single-factor or multi-factor authentication using a wide range of available authentication technologies. Successful authentication requires that the claimant prove possession and control of the authenticator through a secure authentication protocol.

Authenticator Assurance Level 2: AAL2 provides high confidence that the claimant controls an authenticator(s) bound to the subscriber’s account. Proof of possession and control of two different authentication factors is required through secure authentication protocol(s). Approved cryptographic techniques are required at AAL2 and above.

Authenticator Assurance Level 3: AAL3 provides very high confidence that the claimant controls authenticator(s) bound to the subscriber’s account. Authentication at AAL3 is based on proof of possession of a key through a cryptographic protocol. AAL3 authentication requires a hardware-based authenticator and an authenticator that provides verifier impersonation resistance; the same device may fulfill both these requirements. In order to authenticate at AAL3, claimants are required to prove possession and control of two distinct authentication factors through secure authentication protocol(s). Approved cryptographic techniques are required.

Source: https://pages.nist.gov/800-63-3/sp800-63-3.html

---

Bitcointalk is only authenticator assurance level 1. Tbh, if people started signing our messages with bitcoin addresses, we'd be at level 3; but that's on the user to do.
Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!