Audiotool board archive

2-Factor Authentication

althruist · started 2024-06-21 20:06 · updated 2024-07-01 08:23

Quite self explanatory. This would consist of a security system in place where you can have 3 choices:

Methods

-Use your Email

-Use an authenticator app

-Use a security key

Implementing this would make user accounts secure and would be less vulnerable to getting hacked. Of course the system should be optional, but I highly encourage this feature to be implemented incase of ill intentioned users trying to access accounts that aren't theirs.

Comments (16)

2024-06-22 05:50 · 2024-06-22

Account theft is way too common all around the whole Internet. I'd like to keep my account. I am in support of this. Of the cons that this may have, I can only think of how hard it may be to implement this, which may also not be that big of a deal.

althruist · reply
2024-06-22 06:23 · 2024-06-22

second this!

2024-06-22 16:44 · 2024-06-22

It’s not 2fa authentication, that’s like saying ATM machine the A stands for authentication so you are saying “two factor authentication authentication”

RHYTEXX · reply
2024-06-22 16:45 · 2024-06-22

But otherwise a good idea

RHYTEXX · reply
2024-06-22 16:46 · 2024-06-22

Ye

althruist · reply
2024-06-22 16:55 · 2024-06-22

i wrote it half asleep mb lol

Zir0h · reply
2024-06-27 18:28 · 2024-06-27

This person, fighting the good fight 💜

2024-06-27 18:30 · 2024-06-27

Friendly info: if you "log in with google" through that 3rd party authorization or whatever it's called...i think you can set that chosen service to do a 2FA that way. So like I log in with google, and then it goes through Google's 2FA, sending an alert o my phone. I think the cookies might prevent this from happening every time, I actually have a problem with my browser I'm trying to figure out due to malware, but it may be possible to adjust those settings so that it asks you every time?

Idk for sure tho, you'd have to do some digging

Obv this doesn't apply to directly logging in with username/email and PW but it could be a workaround for now if you're concerned about security :3

2024-06-30 18:20 · 2024-06-30

I feel like if audiotool's website detects a change in location (based on IP and session tracking), it should automatically send an email to verify if its really you trying to log in. now this may be an issue due to multiple alts being created using burner emails trying to access it, but there should also be a workaround with burner emails and those domains used by them.

althruist · reply
2024-06-30 21:17 · 2024-06-30

i think that makes sense, however for burner accounts, i would rather not turning on 2FA, hence why I've mentioned it should be an option :]

alas, it doesn't necessarily have to be email, it can also be Authenticator apps or security keys! that should solve the burner email issue

althruist · reply
2024-06-30 21:20 · 2024-06-30

huh? i've never seen that before, I've heard of Google Authenticator though :0, might do some research!

Zir0h · reply
2024-06-30 21:32 · 2024-06-30

Why would you want to make burner accounts for Audiotool? I mean I've heard of alts or rebrands, etc, but burners?

Can anyone explain?

althruist · reply
2024-06-30 22:05 · 2024-06-30

Free followers is the best thing I can think of LOL

I feel like burner accounts would mostly be bots, I personally never had a need for burner accounts.

taiko! · reply
2024-06-30 23:17 · 2024-06-30

burner accounts are usually used to boost a track with likes and plays

Zir0h · reply
2024-07-01 01:41 · 2024-07-01

Well that's not good

althruist · reply
2024-07-01 08:23 · 2024-07-01

actually if anything 2FA would be a great way to combat bots! especially bot accounts that are used several times!