Adblock breaks this site

Ex-Staff 2FA Requirement

Discussion in 'Approved Suggestions' started by Laptop65, May 8, 2015.

Thread Status:
Not open for further replies.
  1. James

    James OK, Just a little pinprick-There'll be no more-ah!
    Village Drunk Retired Sectional Moderator

    Joined:
    Dec 12, 2007
    Posts:
    7,744
    Referrals:
    18
    Sythe Gold:
    78
    Facebook Promoter Sythe RSPS Player St. Patrick's Day 2013 Heidy Easter 2013 Oktoberfest 2013 Sythe's 10th Anniversary Tier 1 Prizebox St. Patrick's Day 2014 Tortoise Penis
    Halloween 2013
    Ex-Staff 2FA Requirement

    That's the problem, a cheap smartphone is not reliable. I've had my 2FA manually reset because of a defective smartphone twice now which took around a week each and I simply never bothered to try the 2FA system once more because is such a hassle as long as you're completely reliable on a device that, at any time point in time, is simply too fragile (gravity, fluids, and theft for example) to be classified as anything but unreliable, does not work for me and I'm sure there are others that think the same way.

    I agree something needs to be done, but I'm not entirely certain forcing 2FA is the solution.

    One could argue that the reason I got hacked was the lack of 2FA, but it is more likely that, on top of my status, this just made me a target. My password was unique and secure, my computer was clean and nothing else was touched. Everyone else that had their Sythe account hacked tells us the same story and none of us are really connected through any other means than Sythe. This should lead any reasonable mind to believe it's more likely a flaw in Sythe's security than all of us being a victim of any (ridiculously specific) malicious software at the same time. Be it as simple as a brute-force or something worse, it doesn't matter if this is an issue with Sythe's security it should be dealt with as such.

    Until now, the 2FA system has always been optional, unless you are an active staff member. Therefore, as an ex-mod, 2FA is optional and can not take away Sythe's liability towards this supposed security issue and should be investigated as such. Perhaps even in the format of a report, as we surely would do if it were anyone else were (unintentionally) causing any malicious activities.

    Honestly, I am astonished by the fact that the hacking victims are forced to refund the victims without actually looking into what caused the hack and who should be held responsible. It is generally accepted that these cases are linked and should definitely be treated as such. Especially when debating liability. I know for a fact that most of the staff agrees, I know for a fact that Richard is(was?) looking into what happened in Sythe's back-end and and I also know for a fact that a captcha system was added to discourage (possibly disable) brute-forcing.

    Why should we, the people, have to refund the victims if we are not at fault when, arguably, Sythe's security system, is!
     
  2. MoonGlare

    MoonGlare Veni. Vidi. Vici
    Graphics Artist Retired Sectional Moderator Competition Winner

    Joined:
    Sep 26, 2011
    Posts:
    3,327
    Referrals:
    4
    Sythe Gold:
    616
    Discord Unique ID:
    257740424829992960
    Paper Trading Competition Participant In Memory of Jon Battleship Champion Heidy
    Ex-Staff 2FA Requirement

    Support this as I experienced it first hand....
    >.>
     
  3. Raze45

    Raze45 Devour.
    Banned

    Joined:
    Feb 12, 2014
    Posts:
    1,392
    Referrals:
    18
    Sythe Gold:
    0
    Ex-Staff 2FA Requirement

    I'm going to give my support to this, it will certainly make their account securer and there isn't a real reason not to have it.
     
  4. SuF

    SuF Legend
    Pirate Retired Global Moderator

    Joined:
    Jan 21, 2007
    Posts:
    14,211
    Referrals:
    28
    Sythe Gold:
    1,234
    Discord Unique ID:
    203283096668340224
    <3 n4n0 Two Factor Authentication User Community Participant Spam Forum Participant Sythe's 10th Anniversary
    Ex-Staff 2FA Requirement

    Please god don't make me enable that shit.

    But on a less "me being a lazy sack of shit" note, it is a rather good idea.
     
  5. Amei

    Amei Let me kill Nex for you
    Amei Donor

    Joined:
    Jul 4, 2013
    Posts:
    1,834
    Referrals:
    2
    Sythe Gold:
    2,920
    Vouch Thread:
    Click Here
    Discord Unique ID:
    PM me on Sythe
    Discord Username:
    PM me on Sythe
    born 2late 2 explore the earth b0rn 2soon 2 explore the galaxy born just in time 2 browse sith d0t org Two Factor Authentication User
    Ex-Staff 2FA Requirement

    You can use 2FA on your own computer if you want. It won't help much if your computer is compromised but it will stop people from accessing your account if they are able to get hold of the password which I'm guessing is the problem atm.

    I fully support this.
     
  6. Punjabi3

    Punjabi3 ☬Grand Master☬
    Retired Sectional Moderator Cracker Head

    Joined:
    Jun 14, 2010
    Posts:
    4,881
    Referrals:
    0
    Sythe Gold:
    204
    Sythe's 10th Anniversary Two Factor Authentication User Halloween 2014 Detective Christmas 2014 Paper Trading Competition Participant In Memory of Jon
    Ex-Staff 2FA Requirement

    Someone try to log in to my account and they locked me out... I ended up enabling it after. It's a good idea and its probably a good idea to have it as a req for OMMs as well if it already isn't.
     
  7. Entrr

    Entrr Hero
    Legendary Retired Global Moderator

    Joined:
    Jun 25, 2012
    Posts:
    5,735
    Referrals:
    0
    Sythe Gold:
    278
    OG Club STEVE Tier 1 Prizebox In Memory of Jon
    Ex-Staff 2FA Requirement

    You can also use your computer.
     
  8. Houred

    Houred Previously known as: TGB Houred
    TBG Houred Donor

    Joined:
    Apr 25, 2014
    Posts:
    1,763
    Referrals:
    0
    Sythe Gold:
    1
    Two Factor Authentication User Halloween 2014 STEVE Sythe's 10th Anniversary Christmas 2014 Easter 2015 (2)
    Ex-Staff 2FA Requirement

    Support, I don't see why not. Easy to put it on, and there's no way it would be a bad thing in any way
     
  9. ZippyGFX

    ZippyGFX The Real MVP

    Joined:
    Dec 15, 2011
    Posts:
    5,450
    Referrals:
    1
    Sythe Gold:
    219
    Ex-Staff 2FA Requirement

    I'm all for this as well, it's not a lot to ask and it helps out heaps.
     
  10. Syed

    Syed Hero
    Retired Sectional Moderator $50 USD Donor New

    Joined:
    Jan 22, 2009
    Posts:
    9,857
    Referrals:
    1
    Sythe Gold:
    11
    Sythe Awards 2012 Winner Gohan has AIDS (3) ??? Rust Player I'm LAAAAAAAME (2) Shitting Rainbow (2)
    Ex-Staff 2FA Requirement

    rofl that was me for real, check ip logs

    also, yeah, good idea

    p.s. i'd love to see laptop as a mod again, he's a great kid, shows initiative.
     
  11. Chris

    Chris Previously known as MrEvilPwns
    Banned

    Joined:
    May 29, 2013
    Posts:
    2,387
    Referrals:
    39
    Sythe Gold:
    158
    Ex-Staff 2FA Requirement

    Already a requirement.
     
  12. Blade

    Blade tfw 2hi lmao
    Retired Sectional Moderator Cracker Head

    Joined:
    Jun 13, 2010
    Posts:
    7,249
    Referrals:
    12
    Sythe Gold:
    233
    Two Factor Authentication User Easter 2015 Valentine's Day 2015 Sythe's 10th Anniversary Christmas 2014 Verified Overwatch Master Halloween 2014 SytheSteamer
    OG Club Detective Pokémon Trainer
    Ex-Staff 2FA Requirement

    Also Fishfishy.

    +1 support, there's really no reason not to be 2fa'd, especially with staff or ex-staff rank.
     
  13. Farcast

    Farcast Lord
    Retired Global Moderator Zombie $50 USD Donor

    Joined:
    Nov 3, 2008
    Posts:
    11,754
    Referrals:
    75
    Sythe Gold:
    499
    Steam Account Verifier Sythe's 10th Anniversary Community Participant
    Ex-Staff 2FA Requirement

    Uh, no, the rank is earned and in no way conditional. There are people on this site that are, you know, actually capable of securing their accounts.

    I've been around for 7 years, staff for at least 2 of those years, never been compromised. Although some dumbasses here desperately need it, 2FA shouldn't be a requirement.

    Point of this thread in Laptop's eyes: They didn't give me ex-mod therefore less people should have it.
     
  14. Ex

    Ex Previously known as Excelont

    Joined:
    Dec 18, 2013
    Posts:
    8,237
    Referrals:
    1
    Sythe Gold:
    148
    Live Streamer I'm LAAAAAAAME In Memory of Jon Paper Trading Competition Participant Community Participant Spam Forum Participant Sythe's 10th Anniversary
    Ex-Staff 2FA Requirement

    Supporting this.

    It doesn't hurt to enable it.
    Just makes things more secure
     
  15. Blade

    Blade tfw 2hi lmao
    Retired Sectional Moderator Cracker Head

    Joined:
    Jun 13, 2010
    Posts:
    7,249
    Referrals:
    12
    Sythe Gold:
    233
    Two Factor Authentication User Easter 2015 Valentine's Day 2015 Sythe's 10th Anniversary Christmas 2014 Verified Overwatch Master Halloween 2014 SytheSteamer
    OG Club Detective Pokémon Trainer
    Ex-Staff 2FA Requirement

    As is typical with Sythe, create rules around the least educated. As well, without 2fa, nobody can be "secured" completely. These mods were, it's extremely likely, hacked as a result of the recent db leaks. All at the same time and all previously inactive.
     
  16. Wonderland

    Wonderland spokesman

    Joined:
    Oct 28, 2012
    Posts:
    10,442
    Referrals:
    0
    Sythe Gold:
    1,154
    Ex-Staff 2FA Requirement

    Support 100%. If you want to keep the rank, you must keep your account protected at the highest level of security. It's a fair compromise.
     
  17. Life2dmax

    Life2dmax Hello
    $200 USD Donor New

    Joined:
    Mar 1, 2014
    Posts:
    2,069
    Referrals:
    1
    Sythe Gold:
    30
    Two Factor Authentication User Sythe's 10th Anniversary Christmas 2015 Easter 2015 (2) Gohan has AIDS Top Striker Lawrence
    Ex-Staff 2FA Requirement

    Support. And I hope existing staff all have this too. There's really no excuse or downside
     
  18. Xier0

    Xier0 Legend
    $5 USD Donor New

    Joined:
    Jan 16, 2013
    Posts:
    13,000
    Referrals:
    2
    Sythe Gold:
    20
    Sythe's 10th Anniversary DIAF Lawrence Member of the Month Winner Gohan has AIDS
    Ex-Staff 2FA Requirement

    Doesn't really fit the definition of a compromise.

    This. People's account security is their own responsibility.
     
  19. Laptop65

    Laptop65 Hero
    $50 USD Donor New

    Joined:
    Dec 19, 2010
    Posts:
    7,930
    Referrals:
    4
    Sythe Gold:
    451
    Sythe RSPS Player Sythe Awards 2012 Winner Sythe's 10th Anniversary St. Patrick's Day 2013
    Ex-Staff 2FA Requirement

    Uh... no

    These ex-mod accounts didn't have 2FA (for whatever reasons) and at least 3 were used to scam, therefore they were either hacked or faked hackings (I really doubt all 3 would go to the dark side).

    Reading posts on here it seems like at least one person or more is targeting ex-mod accounts to scam with, so if you want to keep the ex-mod, you are expected to maintain security on your account. Plus, there's no guarantee you will cough up the money if you did get hacked, so it's much safer to just guarantee that they will be safe.

    At the end of the day - 2FA is secure, if you have it on your phone, you're pretty much untouchable. All ex-staff should have it enabled anyway, without the need for a requirement.
     
  20. Wonderland

    Wonderland spokesman

    Joined:
    Oct 28, 2012
    Posts:
    10,442
    Referrals:
    0
    Sythe Gold:
    1,154
    Ex-Staff 2FA Requirement

    What's your definition of compromise?
     
< SVU Requirements | 07 DeadMan Mode >
Thread Status:
Not open for further replies.


 
 
Adblock breaks this site