**** Please enable 2FA on your OcUK forum account ****

[Lighters]

Thread in FCD.

Sorry FCD?

 

[Werewolf]

So the Overclockers logo at the top isn't a passage to the shop. Right plan B

It leads to the shop but the forum and shop log ins have never been shared between the two (IIRC the closest is if you enter your username on the shop it checks to see if you're eligible for free shipping).

 

[Werewolf]

Sorry FCD?

Forum Content Discussion at the bottom of the "life" (this) section of the forums, under GD, Motors, Film etc.

 

[rIcK]

I guess ultimately 2FA is worth it for stuff that matters ( emails, bank accounts). A forum where you can post stuff and that's about it feels a little overkill for forced 2FA?

 

[Mel_P]

This works on my PC etc. but couldn't get it to work on my Android phone.

I have webmail on my phone and if I open this, then go to the browser and open OCUK Forum it opens and says it has sent me a code. When I go back to the OCUK screen again it says it has sent me a code. The code I get is always 1 step behind the OCUK code input screen as I an only have one app open at a time!!

How do I get around this please? Mel

 

[EVH]

I guess ultimately 2FA is worth it for stuff that matters ( emails, bank accounts). A forum where you can post stuff and that's about it feels a little overkill for forced 2FA?

There's a lot of money changing hands in the member's market. There is no way to specify a granular level of control for those who don't want to use it (and by proxy give up their right to use the MM), so it's on for everyone.

The argument that certain sites don't warrant 2FA is a sticky one... who defines which sites are overkill and which aren't? I personally have it enabled everywhere that I can, but I can see what you're saying.

My personal feeling is that databases get leaked and passwords dumped all the time. I want to protect myself from any future leak, even if I know all my logins are unique. It only takes one re-used password somewhere and some nefarious person could be snooping on a site that does matter. For the sake of an extra 30s a month, that's a trade off I can reasonably make.

 

[Lighters]

Forum Content Discussion at the bottom of the "life" (this) section of the forums, under GD, Motors, Film etc.

All sorted - thanks all!

 

[DXP55]

I have two logins -one for shop and one for forum-- seems I have messed up the shop one.

As usual with this sort of problem I am on the point of throwing whole lot out of the window -So will come back another day.
Thanks all - at least forum 2FA has worked on email.

 

[Petrolhead]

Just logged in, been a few weeks since the last time. 2FA!!! Jesus I thought I was logging into a bank account or paypal etc.

Is this now manditory?

 

[touch]

Jesus I thought I was logging into a bank account or paypal etc.

If you're this easily confused into thinking other unrelated websites are your bank then it's probably best you have some additional security.

 

[SexyGreyFox]

If you're this easily confused into thinking other unrelated websites are your bank then it's probably best you have some additional security.

Post of the day

 

[Petrolhead]

If you're this easily confused into thinking other unrelated websites are your bank then it's probably best you have some additional security.

Haha and your my bank manager

But Is this now mandetory?

 

[visibleman]

If you're this easily confused into thinking other unrelated websites are your bank then it's probably best you have some additional security.

But Is this now mandetory?

All on page 1, first post - https://forums.overclockers.co.uk/posts/35166113

 

[jaybee]

I really don’t know why folk are getting their knickers in a twist here. I already use the MS Authenticator App for work so took seconds to add OcUK. Punch in a code once a month. Why all the drama?

I think this thread highlights why so many people "get hacked" and face issues with accounts being compromised. Of all the kinds of forums out there, OCUK, a place you would expect largely technically literate folk to frequent, we have pages and pages of complaints about how much of an impact this is on them and how hard it is to setup and what not. I'm baffled. Even if I had to download the authenticator app from scratch from the playstore, I still think I could get in for the first time in under 1 minute. Then it's done. I just logged in from a different device and got a pop up and it took me all of 10 seconds to pick up my phone and type in a code which will last for 30 days so...

 

[Petrolhead]

All on page 1, first post - https://forums.overclockers.co.uk/posts/35166113

So, looking at this comment "We strongly encourage you to enable two factor authentication (2FA) on your OcUK forum account." I assume its not madatory then

 

[Surveyor]

So, looking at this comment "We strongly encourage you to enable two factor authentication (2FA) on your OcUK forum account." I assume its not madatory then

Your assumption is incorrect.

 

[Petrolhead]

Your assumption is incorrect.

 

[SexyGreyFox]

I really don’t know why folk are getting their knickers in a twist here. I already use the MS Authenticator App for work so took seconds to add OcUK.

How does this work, I have to use it to login to the NHS every day?
Where's the info so it works with OCUK?

Ta

 

[Feek]

Where's the info so it works with OCUK?

See that picture in the very first post of this thread?

Go into the Two-Step Verification settings in your profile and select to use an app. Scan the QR code with your authenticator and that's it.

 

[DeliciousStorage]

There is no way to specify a granular level of control for those who don't want to use it (and by proxy give up their right to use the MM), so it's on for everyone.

It would be a trivial task in XenForo to only allow access to MM if you have 2FA enabled. Problem is that if someone's account is stolen then the hacker can just enable 2FA themselves to gain access. I'd suggest giving people the option to permanently disable MM access on their accounts to remove the 2FA requirement.