Just a friendly reminder to enable 2-factor authentication on your Mastodon account. It's under Preferences > Account > Two-factor Auth.
Just a friendly reminder to enable 2-factor authentication on your Mastodon account. It's under Preferences > Account > Two-factor Auth. 49 comments
@jeztastic Depending on whether you're using the Advanced view or not, it's the gear up top or the gear over to the right. @aweiss Thanks for the reminder! I set up my account yesterday and now have set up two-factor authentication. @aweiss I use the site on a web browser on my phone, and I don’t see an option to set up 2FA. @aweiss I'd do it, if two-factor authentication didn't so frequently require text or QR code verification on the assumption that I have a smart phone. @KevinCarson1 @aweiss KeePassXC supports generating TOTP codes. It's not the safest way to do it but it still improves security over not using MFA. @KevinCarson1 @aweiss #Authy for Desktop works too. There are a handful of desktop #TOTP clients. @aweiss thanks for the heads up, whilst my yubikey rego didn't work I noticed device unlock (assume using webauthn?) and it worked great! @dan I happen to prefer Authy, but anything that syncs to the cloud should do the job. BitWarden is my password manager, and at some point I might migrate my OTPs over, but I haven't done it yet. @teco22222 If someone gets a hold of your password, they still can't take over your account, because you also need an ever-changing code that your phone generates. @AwkwardChewbaca @Swolfe You may have to be signed in on a desktop computer to turn it on. @aweiss Took me a bit to look for the setting, but now it's done. I even saved the backup codes as a comment for my Mastodon login in LastPass. @aweiss When you get home from the lake to discover you must've left your phone on the roof of the car, once you get it replaced you'll wish your MFA was just using SMS. @aweiss I keep getting error codes, even though I’m literally cutting and pasting the plain text (using the QR code sends me to my iPhone account settings, but the Mastodon app isn’t linked). Since I’m a verified Twitter user, I really appreciate the 2FA feature (I’ve literally had stalkers show up at my house and my acct hacked). Not sure what I’m doing wrong, but am open to learning. Thanks! #fedihelp |
@aweiss errr... Where's preferences? 😳