discuss 2-factor authentication ?

Chirag · Oct 5, 2015

Recently we started seeing too many of hacking incidents of big sites, so getting your account details hacked is just another thing these days unless you are too careful and using some sandbox type of environment.

*You click on a spam link thinking its genuine, and you might get affected by some worm or rat (code in layman language which can log your details.)
*Lets say you go to some xyz site which has some affected code and you have vulnerable version of java & bang on target your browsing experience can be shared with some hacker.

In all; I mean to say, getting affected by malicious stuffs is regular news now. So 2-factor authentication helps here. Where 1] You have to log into the site & 2]Authenticate yourself using your mobile.

Till now it looks awesome. But problem arises with the the second part. Due to large amount of requests the sms which has hexacode for authentication never reaches you on time. It might take from 0 min to 1 hour. And just think you want to access your account immediately & you don't receive the code.

Godaddy & NameCheap both use sms for second authentication process which is not working gr8 at both the places. I have read somewhere where you can use some app on your mobile for second part of authentication but it is not being utilized at most of the places.

So what should we do for better security purpose ?

Ps... I have been hacked before in 2008 so i know what it is like to lose your important stuff.

Felisk · Oct 6, 2015

I know for a fact that Name.com and Uniregistry use the Google Authenticator app for the 2nd part.
Gandi.net uses the OTP Auth app.

If it can help you.

FPForum · Oct 9, 2015

DynaDot makes you verify your account by using your birthday. Once verified, you can proceed to unlock and transfer domains, get auth codes..etc. Personally, I think that's probably the quickest and easiest route. But, lots of places have moved to the SMS stuff, although it takes longer it's probably the most secure.

marsi · Oct 9, 2015

itsCAJ said:
But problem arises with the the second part.

I think the delay issue with GD SMS has been fixed now; recently they've upgraded the text system so it arrives almost instantly without any delay. I did experience the delay issue at least twice in the past though; and it was frustrating when trying to login to catch a last minute auction!

At the end of the day; I feel grateful for having the 2 Factor Authentication regardless specially when I hear the sad stories about people getting their premium domains stolen from them by hackers.

Chirag · Oct 9, 2015

Last time i tried 2factor authentication, the delay was upto 10 hrs. Thats toooooo late.

marsi · Oct 9, 2015

@itsCAJ, Could the delay been caused by the mobile carrier?
Also, if you think you need to be in your account frequently, you could disable the 2 Factor Auth.
Think about it; if you make it easy to yourself; you're also make it easy for spyware and for the hackers!!

Chirag · Oct 9, 2015

marsi said:
@itsCAJ, Could the delay been caused by the mobile carrier?

Same thing was said by phone support team but I was getting msges from NameCheap with delay of max 1 min. And I even tried changing my number and got good 6 hrs delay.

marsi · Oct 9, 2015

6 hours or even 6 min are way too long, IMO.

greggb · Oct 9, 2015

The fundamental problem with the practice of maintaining security is that what is built by human hands, with a blueprint drafted in the human mind, can also be taken apart by human hands. Go back as far as some of the earliest locks. Or as far forward as the problem you're addressing. Throughout history people have always been trying to keep other people out of their shit, but there has never been a foolproof way of doing that. Locks are picked, codes are decoded, and so on.

As long as we are all close to the same intelligence level this will be the case. Because ultimately it's a matter of outsmarting the people you're trying to keep out. And the truth is that you're not that much smarter than them.

I believe the answer to your question lies in the mind of some organism smarter than us. We just need to find them and ask them to come up with a great security technology. We'll all be too dumb to figure out how to crack it.

Of course, in doing so we'd be putting them in a position of power. But we're used to putting individuals in positions of power.

To conclude, one human mind can never concoct something that another human mind won't figure out. So when it comes to the issue of being secure, your options are to either have nothing of great interest to another human, lest they be tempted to break in and take it. Or, pay for protection

ulterios · Oct 9, 2015

itsCAJ said:
Godaddy & NameCheap both use sms for second authentication process which is not working gr8 at both the places.

I log in to my accounts at both places daily, usually multiple times per day, and have never had a delay longer than about 10-15 seconds. I have been using 2 factor for many months and haven't had 1 issue. A lot of times it has to do with the mobile carrier.

discuss 2-factor authentication ?

More options

Chirag

ProNames.inTop Member

Felisk

Established Member

FPForum

Top Member

marsi

Established Member

Chirag

ProNames.inTop Member

marsi

Established Member

Chirag

ProNames.inTop Member

marsi

Established Member

greggb

Established Member

ulterios

The Bear is Sticky with HoneyTop Member

Similar threads

We're social

New posts

Auction activity

What non .com extensions have you sold in 2024?

Polls of interest

Popular this week

Community favorite

Popular this month

Blog favorites

Pinned

Appreciation

Agreement