yasiel.puig (OP)
Newbie
 Offline
Activity: 38
Merit: 0
|
 |
October 11, 2014, 12:26:29 PM
Last edit: October 12, 2014, 03:33:58 PM by yasiel.puig |
|
Is it better to receive a code via text?
Or is it safer to receive said code via the Google authenticator app?
Am I correct in believing that an email would be the least secure of the three?
Thanks.
|
|
|
|
|
|
bitbaby
|
|
October 11, 2014, 01:56:43 PM |
|
Is it better to use to receive a code via text?
Or is it safer to receive said code via the Google authenticator app?
And I'm I correct in believing that an email would be the least secure of the three?
Thanks.
I use the text option where it is available and Google authenticator where the text doesn't work, I think the text option is the safest, but when it comes to hacking anything can be hacked but I still believe hacking someone's phone to steal a code would be really difficult. And yes, email would be the least secure option. |
|
|
|
notlist3d
Legendary
Offline
Activity: 1456
Merit: 1000
|
|
October 11, 2014, 04:51:14 PM |
|
The nice thing about text is even if phone is lost you are able get a new phone and receive it.
|
|
|
|
|
Skoupi
Sr. Member
Offline
Activity: 252
Merit: 250
Skoupi the Great
|
|
October 11, 2014, 04:58:16 PM |
|
The nice thing about text is even if phone is lost you are able get a new phone and receive it.
This is possible with authy to. It has a cloud based (encrypted ofc) back up option. |
|
|
|
|
btcguys
Member
Offline
Activity: 112
Merit: 10
|
|
October 11, 2014, 06:10:06 PM |
|
I don't think authy is safe as it keeps your data online. Route for either Google Authenticator or sms. Even Google Authenticator is unsafe because it stores data on the phone so try to use spare phone that will never go online and keep the phone in a secure place.
|
|
|
|
|
|
Loophole
|
|
October 12, 2014, 01:02:41 PM |
|
I agree with you that email 2FA is the worst for 2 reasons. 1. If you have a malware on your pc, it is likely all your accounts including your email will get hacked. 2. You will need to be very careful separating real 2FA emails and phishing emails. Other than email, the others are all good IMO.  |
|
|
|
|
virtualx
|
|
October 12, 2014, 01:05:29 PM |
|
Yes, not all 2FA methods offer the same security. The idea is to harden security, it's more difficult than only one identification method but by no means uncrackable.
|
...loteo...
DIGITAL ERA LOTTERY | ║
║
║ | | r |
▄▄███████████▄▄
▄███████████████████▄
▄███████████████████████▄
▄██████████████████████████▄
▄██ ███████▌ ▐██████████████▄
▐██▌ ▐█▀ ▀█ ▐█▀ ▀██▀ ▀██▌
▐██ █▌ █▌ ██ ██▌ ██▌ █▌ █▌ ██▌
▐█▌ ▐█ ▐█ ▐█▌ ▐██ ▄▄▄██ ▐█ ▐██▌
▐█ ██▄ ▄██ █▄ ██▄ ▄███▌
▀████████████████████████████▀
▀██████████████████████████▀
▀███████████████████████▀
▀███████████████████▀
▀▀███████████▀▀
| r | | ║
║
║ | RPLAY NOWR
BE A MOON VISITOR! |
[/center] |
|
|
bitkilo
Legendary
Offline
Activity: 1638
Merit: 1010
https://www.bitcoin.com/
|
|
October 12, 2014, 01:09:34 PM |
|
I use Authy also but may have found a glitch. I have 2 phone both with btc wallets and both with authy as 2fa, if you enter the code from 1 phone into the other that your opening your wallet on most times it works, try it. |
Not a paid signature, just added to promote Bitcoin.com |
|
|
|
bf4btc
|
|
October 12, 2014, 01:29:56 PM |
|
Is it better to use to receive a code via text?
Or is it safer to receive said code via the Google authenticator app?
And I'm I correct in believing that an email would be the least secure of the three?
Thanks.
I use the text option where it is available and Google authenticator where the text doesn't work, I think the text option is the safest, but when it comes to hacking anything can be hacked but I still believe hacking someone's phone to steal a code would be really difficult. And yes, email would be the least secure option. This is correct. Text messages are probably the most secure way of 2FA as it will take very advanced technology to be able to intercept a SMS message to a phone and when you use this technology you would likely be committing very serious crimes, much more serious then simply stealing someone's account or bitcoin. Authy is not open source and is essentially controlled by google. It will essentially be as secure as your google account. You are correct to say that email is probably the least secure method of 2FA, however a company can potentially strengthen it by requiring email 2FA + some security question |
|
|
|
|
jeroenn13
|
|
October 12, 2014, 02:01:45 PM |
|
I also recommend Authy to use, seems pretty safe and easy to use.
|
|
|
|
yasiel.puig (OP)
Newbie
Offline
Activity: 38
Merit: 0
|
|
October 12, 2014, 03:31:35 PM |
|
Thanks for all your input guys.
Appreciate it.
I guess I'll stick with the SMS authorization.
|
|
|
|
|
Skoupi
Sr. Member
Offline
Activity: 252
Merit: 250
Skoupi the Great
|
|
October 12, 2014, 04:53:17 PM |
|
I use Authy also but may have found a glitch. I have 2 phone both with btc wallets and both with authy as 2fa, if you enter the code from 1 phone into the other that your opening your wallet on most times it works, try it. That is how is supposed to work since authy gives yout the option for multiple devices. |
|
|
|
|
|
btchris
|
|
October 12, 2014, 04:55:24 PM |
|
One thing not yet mentioned in this thread is the difference between per-transaction 2FA and logon-only 2FA.
Logon-only 2FA (such as supported by Blockchain.info) helps protect against password brute-forcing attacks. Unfortunately, it does practically nothing to help protect against malware.
Per-transaction 2FA (such as supported by GreenAddress.it and BitGo.com) means that each transaction that sends bitcoin out of your wallet must use a new 2FA code. This type of 2FA offers very effective protection against malware (although it's not necessarily perfect).
You should keep all this in mind when weighing your wallet options.
|
|
|
|
|
|
mmsen
|
|
October 12, 2014, 11:13:10 PM |
|
Just realised that authy has a desktop app...
|
|
|
|
|
Kakmakr
Legendary
Offline
Activity: 3542
Merit: 1965
Leading Crypto Sports Betting & Casino Platform
|
|
October 13, 2014, 06:31:38 AM |
|
Best method to keep your BTC safe, in my opinion, is to keep it in cold storage.
Only leave enough online for buying coffee and lunch.
Keep seperate paper wallets, with small amounts, you can sweep, when you need more in your online wallets.
In my view distribution of coins in many wallets, decrease the risk of losing them all in one hack. ^Smile^
|
| ..Stake.com.. | | | ▄████████████████████████████████████▄
██ ▄▄▄▄▄▄▄▄▄▄ ▄▄▄▄▄▄▄▄▄▄ ██ ▄████▄
██ ▀▀▀▀▀▀▀▀▀▀ ██████████ ▀▀▀▀▀▀▀▀▀▀ ██ ██████
██ ██████████ ██ ██ ██████████ ██ ▀██▀
██ ██ ██ ██████ ██ ██ ██ ██ ██
██ ██████ ██ █████ ███ ██████ ██ ████▄ ██
██ █████ ███ ████ ████ █████ ███ ████████
██ ████ ████ ██████████ ████ ████ ████▀
██ ██████████ ▄▄▄▄▄▄▄▄▄▄ ██████████ ██
██ ▀▀▀▀▀▀▀▀▀▀ ██
▀█████████▀ ▄████████████▄ ▀█████████▀
▄▄▄▄▄▄▄▄▄▄▄▄███ ██ ██ ███▄▄▄▄▄▄▄▄▄▄▄▄
██████████████████████████████████████████ | | | | | | ▄▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▄
█ ▄▀▄ █▀▀█▀▄▄
█ █▀█ █ ▐ ▐▌
█ ▄██▄ █ ▌ █
█ ▄██████▄ █ ▌ ▐▌
█ ██████████ █ ▐ █
█ ▐██████████▌ █ ▐ ▐▌
█ ▀▀██████▀▀ █ ▌ █
█ ▄▄▄██▄▄▄ █ ▌▐▌
█ █▐ █
█ █▐▐▌
█ █▐█
▀▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▀█ | | | | | | ▄▄█████████▄▄
▄██▀▀▀▀█████▀▀▀▀██▄
▄█▀ ▐█▌ ▀█▄
██ ▐█▌ ██
████▄ ▄█████▄ ▄████
████████▄███████████▄████████
███▀ █████████████ ▀███
██ ███████████ ██
▀█▄ █████████ ▄█▀
▀█▄ ▄██▀▀▀▀▀▀▀██▄ ▄▄▄█▀
▀███████ ███████▀
▀█████▄ ▄█████▀
▀▀▀███▄▄▄███▀▀▀ | | | ..PLAY NOW.. |
|
|
|
|
Gervais
|
|
October 13, 2014, 11:30:16 AM |
|
Is it better to receive a code via text?
Or is it safer to receive said code via the Google authenticator app?
Am I correct in believing that an email would be the least secure of the three?
Thanks.
I personally think a text is the most secure and an email is the least. Your email can easily be hacked into, whereas your phone number is pretty safe. |
|
|
|
|
|
Pony789
|
|
October 13, 2014, 11:30:38 AM |
|
Best method to keep your BTC safe, in my opinion, is to keep it in cold storage.
True, but 2FA isn't limited to only bitcoin storage. It is applicable to online banking, email, dropbox and in the future your bitcointalk account. |
|
|
|
boumalo
Legendary
Offline
Activity: 1918
Merit: 1018
|
|
October 13, 2014, 11:33:50 AM |
|
Complicated username that you don't use for other websites
Kind of complicated password that you don't use for other websites
Google F2A
Virus protected computer
|
|
|
|
|
sj2199
|
|
October 13, 2014, 04:11:48 PM |
|
authy is best app for 2fa ..Recently a pc version has also been introduced..check the official website
|
|
|
|
BigBoy89
Legendary
Offline
Activity: 1512
Merit: 1011
|
|
October 14, 2014, 01:28:42 PM |
|
anyone knows which one use for google 2FA? android phone or google mail that used in android? i changed my OS/ROM for my android phone, and didn't see my site lists which use google 2FA  ccan i recover it using my gmail that i used before in my android phone? |
| .AMEPAY. | | | | | | ▄▄█████████▄▄
▄█████████████████▄
▄█████████████████████▄
▄█████████▀▀▄▀▀█████████▄
▄████████▄▄█▀ ▀█▄▄████████▄
████████ ▀▀█▄██▀▀▄████████
████████ █ ▄ █ ▄▀▀▄████████
████████ █ █ █ ▄▀▀▄████████
▀█████████▄█ █ ▄██████████▀
▀████████ ▀▀▀ ████████▀
▀█████████████████████▀
▀█████████████████▀
▀▀█████████▀▀
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀ | │▌ | | AMEPAY IEO
▄██████▄ ▀██████▄
█████████ ▀█████
███████▀ ▀███
██████▀ ▄█▄ ▀██
██████▄ ▀█▀ ▄██
███████▄ ▄███
█████████ ▄█████
▀██████▀ ▄██████▀ | |
| AMEPAY LISTING
▐███▄
████▌
▐██████████▄
█████████████
████▌ █████
▐████ ▄████
██████████▀
▀█████▀▀ | |
| ▐│ | ▄▄█████████▄▄
▄█████████████████▄
▄█████████████████████▄
▄█████████▀▀▄▀▀█████████▄
▄████████▄▄█▀ ▀█▄▄████████▄
████████ ▀▀█▄██▀▀▄████████
████████ █ ▄ █ ▄▀▀▄████████
████████ █ █ █ ▄▀▀▄████████
▀█████████▄█ █ ▄██████████▀
▀████████ ▀▀▀ ████████▀
▀█████████████████████▀
▀█████████████████▀
▀▀█████████▀▀
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀ |
|
|
|
|
