What all services does everyone use 2-factor auth on?

Forums › Off topic › What all services does everyone use 2-factor auth on?

Kyanar

2917 posts

Uber Geek
+1 received by user: 414

Trusted

Subscriber

Topic # 143275 8-Apr-2014 22:20

Following on from the discussion about 2-factor SMS authentication on Vodafone with Facebook, someone commented that they weren't aware you could use Google Authenticator with Facebook. So, I figure let's all raise awareness of 2-factor authentication, and clue people in on what services they can properly secure and how with a handy list. I'll start...

So far, with Google Authenticator, I have secured:
Google Apps account
Microsoft account
Gandi (domain registrar)
Facebook
Amazon Web Services (only AWS - you can't secure an Amazon website account)
Github

I also have a Battle.net authenticator for my Blizzard account, and the PhoneFactor app for Office 365 (note: Office 365 uses the "PhoneFactor" app, not Google Authenticator/Microsoft Authenticator). My twitter account authorises login requests via the twitter app on my phone as well.

LinkedIn uses SMS codes for 2 factor (no other option available) and Cloudflare uses Authy (which sucks).

According to he BDFL, apparently you can also use Google Authenticator/Microsoft Authenticator (they both are compatible with each other) with Dropbox, LastPass, and Hootsuite.

Stuff that I can't get 2 factor on include my Westpac (NZ and AU) bank accounts, my "Kiwi Wealth" Kiwisaver account, and my credit card merchant processing account. Ya know, stuff that involves actual money and quite a bit of it.

1 | 2

4911 posts

Uber Geek
+1 received by user: 1359

Trusted

Reply # 1020926 8-Apr-2014 22:27

3 people support this post

2 factor is much effort.

nakedmolerat

4308 posts

Uber Geek
+1 received by user: 799

Trusted

Reply # 1020934 8-Apr-2014 22:49

Dropbox

ANZ account

nathan

4927 posts

Uber Geek
+1 received by user: 1312

Trusted

Microsoft

Reply # 1020938 8-Apr-2014 23:00

One person supports this post

TimA: 2 factor is much effort.

so is cleaning up the mess when your account gets p0wned

Coil

4911 posts

Uber Geek
+1 received by user: 1359

Trusted

Reply # 1020939 8-Apr-2014 23:03

nathan:
TimA: 2 factor is much effort.

so is cleaning up the mess when your account gets p0wned

I dont get in that crap hole of a mission to start with. BTW, Nothing online is worth anything to me. (ASB 2 factor)

Tim's guide to the internet.

Dont link everything under one account. E.G: Google accounts, Facebook login.
Dont use the same passwords.
Install Common Sense 2014 into your brain.
If its really important to you, Dont store it online.

insane

2240 posts

Uber Geek
+1 received by user: 352

Trusted

Subscriber

Reply # 1020943 8-Apr-2014 23:07

Setting up two factor auth with google was a little bit annoying due to the number of devices I use, but the added security is worth it given how central my google account has become to every other service I use.

For those of you running servers on net and you want that little extra security for SSH/RDP, check out a company called duosecurity makes a mean little app that makes using 2FA so simple and easy to use.

jarledb

Webhead
1782 posts

Uber Geek
+1 received by user: 496

Trusted

Subscriber

Reply # 1020946 8-Apr-2014 23:41

TimA: 2 factor is much effort.

Famous last words.

Jarle on Twitter - Senson Web Marketing

jarledb

Webhead
1782 posts

Uber Geek
+1 received by user: 496

Trusted

Subscriber

Reply # 1020947 8-Apr-2014 23:47

TimA:
Dont use the same passwords.

The thing about security is that someone will always be smarter than you. Passwords you can more or less just forget as single defense. And with higher computer power its only going to be less secure for every day that goes by.

This guy is not a noob, and he learned that 2-factor is one of the few ways to secure yourself today.

http://www.wired.com/2012/08/apple-amazon-mat-honan-hacking/

http://www.wired.com/2012/11/ff-mat-honan-password-hacker/all/all

http://www.wired.com/2014/01/my-epic-hack-revisited/

Jarle on Twitter - Senson Web Marketing

Coil

4911 posts

Uber Geek
+1 received by user: 1359

Trusted

Reply # 1020951 9-Apr-2014 00:11

jarledb:
TimA:
Dont use the same passwords.

The thing about security is that someone will always be smarter than you. Passwords you can more or less just forget as single defense. And with higher computer power its only going to be less secure for every day that goes by.

This guy is not a noob, and he learned that 2-factor is one of the few ways to secure yourself today.

http://www.wired.com/2012/08/apple-amazon-mat-honan-hacking/

http://www.wired.com/2012/11/ff-mat-honan-password-hacker/all/all

http://www.wired.com/2014/01/my-epic-hack-revisited/

Seen that.
What is there to hack of mine on the internet thats worth some kiddos time? Facebook, Meh... Email? $1000 steam account that uses 2FA steam guard thing that for forgot the email to.

Geektastic

9233 posts

Uber Geek
+1 received by user: 2698

Trusted

Subscriber

Reply # 1021066 9-Apr-2014 10:34

One person supports this post

Nothing AFAIK.

What would they want of mine from on line apart from banking?

Dratsab

2796 posts

Uber Geek
+1 received by user: 758

Trusted

Subscriber

Reply # 1021132 9-Apr-2014 12:11

- Google
- Facebook
- Dropbox

Edit: Just added Microsoft

greenbone

148 posts

Master Geek
+1 received by user: 45

Reply # 1021167 9-Apr-2014 12:52

blockchain.info

Sideface

3541 posts

Uber Geek
+1 received by user: 1619

Subscriber

Reply # 1021175 9-Apr-2014 13:07

Just the bank

Sideface

michaelmurfy

6275 posts

Uber Geek
+1 received by user: 2730

Moderator

Trusted

Subscriber

Reply # 1021183 9-Apr-2014 13:30

- My Computers (Server, Laptop)
- My Linode + the Linode CP.
- Gmail / domain email.
- Dropbox.
- Some Microsoft products.

If 2factor is available, I'll use it.

Michael Murphy | https://murfy.nz
Want to be with an epic ISP? Want $20 to join them too? Well, use this link to sign up to BigPipe!
The Router Guide | Electric Kiwi | Community UniFi Cloud Controller | Ubiquiti Edgerouter Tutorial

muppet

1806 posts

Uber Geek
+1 received by user: 562

Trusted

Reply # 1021188 9-Apr-2014 13:34

Everything I can!

ASB (Netcode)
Twitter
App.net
Dropbox
TeamViewer
Microsoft
Facebook
GitHub
Google
Wordpress.com
Buffer
Tumblr
STP
BTN

There's a great site called twofactorauth.org that shows all the sites that support it - Sadly PayPal, Amazon don't support it, which are two that I'd love to see. Paypal claim to, but it appears to be a US only thing.

I find TimA's thoughts on 2FA interesting - I'd have thought any self-respecting Geek would support the notion of 2FA, even if they're not a heavy user of it themselves.

freitasm

BDFL - Memuneh
58321 posts

Uber Geek
+1 received by user: 9770

Administrator

Trusted

Geekzone

Subscriber

Reply # 1021190 9-Apr-2014 13:36

Twitter
Facebook
BNZ
Google account
Microsoft account
LastPass
Dropbox
Evernote

Mauricio Freitas (Geekzone Admin, Devil's Advocate, my blog, technology disclosure)

1 | 2