**** Please enable 2FA on your OcUK forum account ****

Commissario
OP
Joined
16 Oct 2002
Posts
2,646
Location
In the radio shack
For some reason my friend can't login into his account using his 2 step authentication codes, he has asked me to post this on his behalf,

https://forums.overclockers.co.uk/members/angeluimorte.50506/

AngeluiMorte
Please ask your friend to setup a second throwaway account and start a thread in FCD asking for help. We’ll have to ask some questions to verify he’s the owner and we’ll get it sorted. The throwaway account will then be disabled.
 
Underboss
Joined
20 Oct 2002
Posts
32,238
Location
Oxfordshire / Bucks
just took me ages logging in

got the code, then it said "error, could not verify"

it was asking for my username and password

i rebooted my PC after 6 goes, then i came to the forums again via a bookmark , this time it did not ask me for username and password, it went straight to "sent you an email with code" which worked
how odd
 
Soldato
Joined
26 Dec 2011
Posts
5,830
Location
City of London
Is it just me or is the forum dying a death since this policy was brought in? Motors forum with week old threads on the front page which is unheard of, and lots of regular posters gone. I'd love to see the stats of monthly unique users.
 
Joined
27 Jul 2005
Posts
13,038
Location
The Orion Spur
Is it just me or is the forum dying a death since this policy was brought in? Motors forum with week old threads on the front page which is unheard of, and lots of regular posters gone. I'd love to see the stats of monthly unique users.

Thought that myself recently, I know of a few people that have gotten sick of having to login using 2FA all the time, not sure why it needs to expire monthly, and as mentioned by ShiWarrior above there seems to be an issue with 2FA recently.
 
Man of Honour
Joined
13 Oct 2006
Posts
90,805
It is a bit grim having to authenticate monthly when I use around half a dozen different devices to access the forums.
 
Last edited:

V F

V F

Soldato
Joined
13 Aug 2003
Posts
21,184
Location
UK
Thought that myself recently, I know of a few people that have gotten sick of having to login using 2FA all the time, not sure why it needs to expire monthly, and as mentioned by ShiWarrior above there seems to be an issue with 2FA recently.

Could have been worse. Not that long ago overclock.net had the main domain directing you to a full page captcha even when not signed in. This went on for a few months until they decided to change it.
 
Man of Honour
Joined
13 Oct 2006
Posts
90,805

It is a bit of a pain when you are using a mixture of mobile, tablet, laptop and desktop devices and have multiple browsers logged in and not always the appropriate authentication method readily available - most other sites have at least 90 days or even don't ask for re-verification on the same device/browser for a very long time.
 

JRS

JRS

Soldato
Joined
6 Jun 2004
Posts
19,497
Location
Burton-on-Trent
It is a bit of a pain when you are using a mixture of mobile, tablet, laptop and desktop devices and have multiple browsers logged in and not always the appropriate authentication method readily available - most other sites have at least 90 days or even don't ask for re-verification on the same device/browser for a very long time.

Is it?

I mean...you can save a text file with backup codes on those devices, no? So anything that doesn't have your forum-registered email address or an authenticator app on can use those.
 
Man of Honour
Joined
13 Oct 2006
Posts
90,805
Is it?

I mean...you can save a text file with backup codes on those devices, no? So anything that doesn't have your forum-registered email address or an authenticator app on can use those.

But then that means managing the one use backup codes and making sure I don't exhaust them just in case, etc.
 

JRS

JRS

Soldato
Joined
6 Jun 2004
Posts
19,497
Location
Burton-on-Trent
But then that means managing the one use backup codes and making sure I don't exhaust them just in case, etc.

Christ, it's not as if they take much work to generate new ones (one click to tick a box, another to confirm regeneration). It gives you ten codes at a time, let's say a couple of your "around half a dozen" devices need to log in that way for whatever reason:
  • 0 days - codes 1&2
  • 30 days - codes 3&4
  • 60 days - codes 5&6
  • 90 days - codes 7&8
  • 120 days - codes 9&10
  • then regenerate
If that's genuinely too onerous a task for you then maybe it's time to give up on computers :p
 
Man of Honour
Joined
13 Oct 2006
Posts
90,805
Christ, it's not as if they take much work to generate new ones (one click to tick a box, another to confirm regeneration). It gives you ten codes at a time, let's say a couple of your "around half a dozen" devices need to log in that way for whatever reason:
  • 0 days - codes 1&2
  • 30 days - codes 3&4
  • 60 days - codes 5&6
  • 90 days - codes 7&8
  • 120 days - codes 9&10
  • then regenerate
If that's genuinely too onerous a task for you then maybe it's time to give up on computers :p

When you generate new codes all previous ones are invalid so you have to make sure all devices have the latest ones, etc. and stay on top of which set is the latest and means you can't just print out some backup codes and stick them in a safe, etc. just in case and so on.

I think you'd probably change your tune if actually doing this.

EDIT: Additionally it isn't just the OcUK forums, though pretty much all other sites/apps have much longer periods between verification - when you are dealing with it generally over lots of stuff it all adds up - something a lot of software developers, etc. don't seem to think of or don't care about.
 
Soldato
Joined
26 Dec 2011
Posts
5,830
Location
City of London
If that's genuinely too onerous a task for you then maybe it's time to give up on computers :p
It's fine saying stuff like this, but if you've ever worked anywhere near UX design for websites or apps, you would know that a lot of people are indeed lazy and won't bother coming back if you log them out of something. We're still here obviously, but it's definitely a pain to keep logging in, especially as the email address I use here isn't my usual gmail address but a burner one, so I have to go and log into that.
 
Associate
Joined
5 Oct 2011
Posts
121
Not read the full thread but thank you for the heads up to add 2FA.

Hopefully it won't come back to burn me when I change phones :D
 
Soldato
Joined
26 Dec 2011
Posts
5,830
Location
City of London
Use an authenticator app then all you need is to enter the code it generates, no need to go near your email.
"You're holding it wrong!".

As I said earlier, anyone with any basic app/web UX experience would know what adding something like this would do to the forum, and we're seeing it happen. Nobody on earth is going to install an authenticator to access a niche web forum.
 
Last edited:
Commissario
Joined
17 Oct 2002
Posts
32,996
Location
Panting like a fiend
"You're holding it wrong!".

As I said earlier, anyone with any basic app/web UX experience would know what adding something like this would do to the forum, and we're seeing it happen. Nobody on earth is going to install an authenticator to access a niche web forum.
It's only needed once you've reached the criteria for MM access, that's 6 months and 1000 posts.

It was either that or we shut down MM. as there was no way we could limit it to only people who had MM access that we could find and impliment.
 
Back
Top Bottom