bigmoe Whitfield Posted August 15, 2021 Share Posted August 15, 2021 I'm not looking for arguments from other people on this, it's getting to the point where I need everything I 2fa/3fa, I work in a private sector that deals in certain items and we have several physical tokens to login with bio-metrics, I'm used to level of security and SL is my only social outlet because of the hours I have to keep, so I want every account I use to be super secure @Kristen Linden @Monty Linden any news on the progress? 1 1 Link to comment Share on other sites More sharing options...
bigmoe Whitfield Posted August 15, 2021 Author Share Posted August 15, 2021 @Klytyna whats so funny? because I want and need the extra security in this day and age? I'm not going to be accepting much less from any company soon, 2fa/3fa has to become a standard and used by every one even if they do not think they will ever need it. 1 1 Link to comment Share on other sites More sharing options...
Ardy Lay Posted August 15, 2021 Share Posted August 15, 2021 3 hours ago, bigmoe Whitfield said: @Klytyna whats so funny? because I want and need the extra security in this day and age? I'm not going to be accepting much less from any company soon, 2fa/3fa has to become a standard and used by every one even if they do not think they will ever need it. Klytyna gives free forum points! Probably not the intent, but is the overall result. Some people get upset about all the laughing. Don't. It's like they have cans and cans of laugh-track they are trying to purge. A quick glance at their post history, which ended December 27, 2018, leads me to suspect "cat's got their tongue". Will the "cat" ever give it back? Unlikely. 1 Link to comment Share on other sites More sharing options...
HunniHope Posted August 17, 2021 Share Posted August 17, 2021 2FA is something LL are working on. It came up at the last Web User Group (Aug 4th) but i cant remember if there was any more news Link to comment Share on other sites More sharing options...
So Whimsy Posted August 17, 2021 Share Posted August 17, 2021 1 minute ago, HunniHope said: 2FA is something LL are working on. It came up at the last Web User Group (Aug 4th) but i cant remember if there was any more news I really hope its opt-in. 1 Link to comment Share on other sites More sharing options...
Sammy Huntsman Posted August 17, 2021 Share Posted August 17, 2021 I honest want 2fa, so I can better protect my SL account. I do it with everything else and feel at ease with it. I want to be able to do it with my SL account too. Link to comment Share on other sites More sharing options...
So Whimsy Posted August 17, 2021 Share Posted August 17, 2021 14 minutes ago, Sammy Huntsman said: I honest want 2fa, so I can better protect my SL account. I do it with everything else and feel at ease with it. I want to be able to do it with my SL account too. Good for you, I don't. 14 years and 2 month make feel at ease without f2a e-mail spam. 1 Link to comment Share on other sites More sharing options...
Sammy Huntsman Posted August 17, 2021 Share Posted August 17, 2021 1 minute ago, So Whimsy said: Good for you, I don't. 14 years and 2 month make feel at ease without f2a e-mail spam. I don't get F2A spam at all. Unless someone tries to login into my account. Hell I have it setup, where i also get a text letting me know that as well. I would rather that, than have someone gaining access to my account. Link to comment Share on other sites More sharing options...
So Whimsy Posted August 17, 2021 Share Posted August 17, 2021 1 minute ago, Sammy Huntsman said: I don't get F2A spam at all. Unless someone tries to login into my account. Hell I have it setup, where i also get a text letting me know that as well. I would rather that, than have someone gaining access to my account. The f2a I have been faced with in various MMORPG's always send me a mail with a code I need to provide upon log in. That's what I don't want and so far we don't know just how they will implement f2a, right? 1 Link to comment Share on other sites More sharing options...
Lillith Hapmouche Posted August 18, 2021 Share Posted August 18, 2021 18 hours ago, HunniHope said: 2FA is something LL are working on Oh my. 😳🤯 Err, I mean: There is a long enough thread about 2fa (f2a?) already. Wasn't that one good enough? 1 Link to comment Share on other sites More sharing options...
bigmoe Whitfield Posted August 18, 2021 Author Share Posted August 18, 2021 19 hours ago, So Whimsy said: I really hope its opt-in. you do realize at some point, you will have zero choices for opt-in, as it's becoming the norm and will be at some point either you use it, or you are not going to be able to use services, I wish people would stop trying to fight security. 2 Link to comment Share on other sites More sharing options...
Coffee Pancake Posted August 18, 2021 Share Posted August 18, 2021 19 hours ago, So Whimsy said: The f2a I have been faced with in various MMORPG's always send me a mail with a code I need to provide upon log in. That's what I don't want and so far we don't know just how they will implement f2a, right? Yeah, but an email sure beats the hell out of trying to log in one day and finding you can't because someone else has your account. Just because you've not had your account compromised yet, doesn't mean it can't or won't happen. Oh .. and you do use different strong passwords for everything, right? 1 1 Link to comment Share on other sites More sharing options...
So Whimsy Posted August 18, 2021 Share Posted August 18, 2021 1 hour ago, bigmoe Whitfield said: you do realize at some point, you will have zero choices for opt-in, as it's becoming the norm and will be at some point either you use it, or you are not going to be able to use services, I wish people would stop trying to fight security. If it's not opt-in or opt-out I'll find myself logging into SL less just like with those MMO's, some of which I even de-installed because it was annoying as heck. 1 hour ago, Coffee Pancake said: Oh .. and you do use different strong passwords for everything, right? Absolutely. 1 Link to comment Share on other sites More sharing options...
sirhc DeSantis Posted August 19, 2021 Share Posted August 19, 2021 On 8/18/2021 at 4:21 PM, bigmoe Whitfield said: you do realize at some point, you will have zero choices for opt-in, as it's becoming the norm and will be at some point either you use it, or you are not going to be able to use services, I wish people would stop trying to fight security. Which services would those be then? You already hinted you are in some sort of private sector hive that is all security all the time - so tell me. Which 'services' that you and your corporate provide will they be? As always, response to this is - 'opt in yeah whatever. obligatory well now - show me how its going to be done. all of it. including all actors. all of them with traceable paths =^^=' 1 Link to comment Share on other sites More sharing options...
bigmoe Whitfield Posted August 19, 2021 Author Share Posted August 19, 2021 5 hours ago, sirhc DeSantis said: Which services would those be then? You already hinted you are in some sort of private sector hive that is all security all the time - so tell me. Which 'services' that you and your corporate provide will they be? As always, response to this is - 'opt in yeah whatever. obligatory well now - show me how its going to be done. all of it. including all actors. all of them with traceable paths =^^=' we use a 2fa/3fa combination currently, these are self rolled with google auth behind them, that's all I'm legally allowed to say, several federal level nda's on my butt here. 1 Link to comment Share on other sites More sharing options...
Luke Rowley Posted August 20, 2021 Share Posted August 20, 2021 Well, also, it's not because you have a strong password that someone can't get it. If for some reasons you get a keylogger on your computer and the person get your password, it can be strong as hell, it won't make a difference and that's where 2fa is super useful. I'm waiting for it too. Link to comment Share on other sites More sharing options...
bigmoe Whitfield Posted September 22, 2021 Author Share Posted September 22, 2021 well this snuck through without a reply to the topics 1 2 1 Link to comment Share on other sites More sharing options...
mygoditsfullofstars Posted September 22, 2021 Share Posted September 22, 2021 Pity it doesnt protect the "delete account" page yet.. 2 Link to comment Share on other sites More sharing options...
bigmoe Whitfield Posted September 22, 2021 Author Share Posted September 22, 2021 31 minutes ago, mygoditsfullofstars said: Pity it doesnt protect the "delete account" page yet.. yeah that needs to be fixed @Tommy Linden @Monty Linden Link to comment Share on other sites More sharing options...
mygoditsfullofstars Posted September 22, 2021 Share Posted September 22, 2021 11 minutes ago, bigmoe Whitfield said: yeah that needs to be fixed @Tommy Linden @Monty Linden A Jira has been filed for this already on https://jira.secondlife.com/browse/BUG-231234 Hoping it gets addressed promptly. Link to comment Share on other sites More sharing options...
bigmoe Whitfield Posted September 22, 2021 Author Share Posted September 22, 2021 4 minutes ago, mygoditsfullofstars said: A Jira has been filed for this already on https://jira.secondlife.com/browse/BUG-231234 Hoping it gets addressed promptly. maybe it should of been placed under security for the jira too since it would be an issue security side. Link to comment Share on other sites More sharing options...
Alwin Alcott Posted September 22, 2021 Share Posted September 22, 2021 (edited) 2 hours ago, mygoditsfullofstars said: Pity it doesnt protect the "delete account" page yet.. it's not even possible to delete your account by that button just close the access. Edited September 22, 2021 by Alwin Alcott Link to comment Share on other sites More sharing options...
bigmoe Whitfield Posted September 22, 2021 Author Share Posted September 22, 2021 30 minutes ago, Alwin Alcott said: it's not even possible to delete your account by that button just close the access. we figure that cutting off avenues for even getting that far would of been built into it from the start. Link to comment Share on other sites More sharing options...
mygoditsfullofstars Posted September 22, 2021 Share Posted September 22, 2021 42 minutes ago, Alwin Alcott said: it's not even possible to delete your account by that button just close the access. It deactivates the account at first and involves having to engage LL support to try and get it back.. That page should be blocked by 2FA regardless. Say someone malicious manages to steal the current password to an account, then out of spite because they cant change the password or do other things to it, they delete the account. Then the legit owner of the account has to then go through all the hassle with support to try and get their account back (even worse, if its left deactivated long enough, the accounts inventory will be purged)... Easier and better to just protect that page to save someone having to go through the hassle. I was surprised on how LL implemented this actually, I would have thought they would just prevent account login entirely without 2FA, rather than just protect a subset of functions after logging in. 1 Link to comment Share on other sites More sharing options...
Solar Legion Posted September 22, 2021 Share Posted September 22, 2021 9 minutes ago, mygoditsfullofstars said: I was surprised on how LL implemented this actually, I would have thought they would just prevent account login entirely without 2FA, rather than just protect a subset of functions after logging in. Not surprised At All. And warned people that it would likely not be implemented properly - at a minimum. 1 Link to comment Share on other sites More sharing options...
Recommended Posts
Please take a moment to consider if this thread is worth bumping.
Please sign in to comment
You will be able to leave a comment after signing in
Sign In Now