Bitcoin Forum>Other>Meta
Author

Topic: Bitcointalk 2FA has no security (Read 36 times)

Learn Bitcoin
hero member
Activity: 462
Merit: 767
Instant cryptocurrency exchange with own reserves!
Bitcointalk 2FA has no security
Today at 01:51:51 AM
#6
Quote from: _act_ on Today at 01:45:19 AM
I have it all posted before on my previous post:

And I agree with your post. I made some changes so it does not confuse you. How does it look like now? If you ask me to be honest, I actually did not read the 2nd part. When I first read the first part, I already decided to quote that part and post what came to my mind. Sometimes I suggest people read the whole post before they reply, but my lazy ass cannot follow the same suggestion all the time. LOL. I have read the similar comment from a more prominent forum member, and now I am saying this.  Cheesy
_act_
legendary
Activity: 1106
Merit: 1337
Lightning network is good with small amount of BTC
Re: Bitcointalk 2FA has no security
Today at 01:45:19 AM
#5
Quote from: Learn Bitcoin on Today at 01:39:44 AM
Even if you do not post a signed message from your Bitcoin wallet address, but you posted your Bitcoin address on the forum, you can still sign a message to prove the ownership of your account. There are some cases where people did not post any signed message before, but they posted their addresses in signature campaigns. They used to sign a message from the same address to recover their accounts and the team helped them.
I have it all posted before on my previous post:

Quote from: _act_ on Today at 01:27:29 AM
What that is most important is to sign a message with one of your bitcoin addresses on this forum and make sure you keep the wallet or the wallet seed phrase or private key.

Or make sure that you have access to the seed phrase or private key of one of the bitcoin addresses that you have posted on this forum belonging to you. An example is the bitcoin address that you posted while applying for a signature complain.

Learn Bitcoin
hero member
Activity: 462
Merit: 767
Instant cryptocurrency exchange with own reserves!
Re: Bitcointalk 2FA has no security
Today at 01:39:44 AM
#4
Quote from: _act_ on Today at 01:27:29 AM
What that is most important is to sign a message with one of your bitcoin addresses on this forum and make sure you keep the wallet or the wallet seed phrase or private key.

Or make sure that you have access to the seed phrase or private key of one of the bitcoin addresses that you have posted on this forum belonging to you. An example is the bitcoin address that you posted while applying for a signature complain.

Yeah, Even if you do not post a signed message from your Bitcoin wallet address, but you posted your Bitcoin address on the forum, you can still sign a message to prove the ownership of your account. There are some cases where people did not post any signed message before, but they posted their addresses in signature campaigns. They used to sign a message from the same address to recover their accounts and the team helped them.

But it is too easy to post a signed message to secure an account. As long as it does not cost anything and does not need a lot of time, one should post a signed message.

@Op, as ZMBFM posted, it's a feature, not a bug.
_act_
legendary
Activity: 1106
Merit: 1337
Lightning network is good with small amount of BTC
Re: Bitcointalk 2FA has no security
Today at 01:27:29 AM
#3
What that is most important is to sign a message with one of your bitcoin addresses on this forum and make sure you keep the wallet or the wallet seed phrase or private key.

Or make sure that you have access to the seed phrase or private key of one of the bitcoin addresses that you have posted on this forum belonging to you. An example is the bitcoin address that you posted while applying for a signature complain.
Z_MBFM
sr. member
Activity: 616
Merit: 322
Re: Bitcointalk 2FA has no security
Today at 01:24:03 AM
#2
This is not any secret or bug. Theymos already mentioned this when 2FA has been released for this forum. keep secure your email and bitcoin address which you will use first time on your account. if you forget email or if your account are hacked with email then you will able to recovery your account via Bitcoin address sign.

Quote from: theymos on December 21, 2023, 01:51:38 PM
If you use the forgotten-password function, then there's an option to remove the 2FA. So 2FA does not provide any protection in case of a compromised email. Make sure that your email address is secure. If you don't want to set an email address, use something like [email protected]; don't use a random nonsense email like [email protected], since somebody might create that domain/email.

-It should have been posted with your real account  Lips sealed
?
Activity: -
Merit: -
Re: Bitcointalk 2FA has no security
Today at 01:20:56 AM
#1
When I enabled 2FA on my account, my account was not logging in without a 2FA code.
https://talkimg.com/images/2025/02/12/eOpyv.png

Later I tried to forget my password and there I saw a checkmark option where it said that if I checkmark it my 2FA will be disabled. I did that and next time I login I can login without 2FA
https://talkimg.com/images/2025/02/12/eODbH.png

If 2FA can be disabled via email, what is its security? If a hacker gets access to my email, he can easily access my account. this is a bug?
Bitcoin Forum>Other>Meta
Jump to: