Signing a message became meaningless many years ago when it was uncovered accounts were being sold WITH a corresponding priv key to a wallet address that had been staked.
2FA isn't meant to stop account sales, it's meant to stop accounts from getting compromised. 
Topic: Whats your take on adding 2FA key as a Bitcointalk account security features. - page 3. (Read 583 times)
August 12, 2023, 09:48:43 AM
August 12, 2023, 09:32:17 AM
I have nothing against additional security when it comes to our BTT accounts, but I wonder to what extent even 2FA would protect those who behave carelessly in protecting their private data. As we know, most CEX (perhaps even all of them) have some type of 2FA, but even such accounts are often hacked, because no one should be fooled that 2FA is some kind of ultimate solution for absolute security.
If I have a strong password that consists of, say, 20+ random characters, and if that same password is stored in a way that I'm sure it's accessible only to me, what's the point of regularly changing the password? It can even be counterproductive if you pick up a keylogger in the meantime, and by changing your password you actually compromise yourself.
To protect and increase your account security regularly changing of passwords can also help to improve your account safety. security.
~snip~
~snip~
If I have a strong password that consists of, say, 20+ random characters, and if that same password is stored in a way that I'm sure it's accessible only to me, what's the point of regularly changing the password? It can even be counterproductive if you pick up a keylogger in the meantime, and by changing your password you actually compromise yourself.
August 12, 2023, 08:20:15 AM
Signing a message became meaningless many years ago when it was uncovered accounts were being sold WITH a corresponding priv key to a wallet address that had been staked.
It's a dead end security feature.
The same for PGP/GPG keys which can likewise be ported.
It's a dead end security feature.
The same for PGP/GPG keys which can likewise be ported.
August 12, 2023, 06:45:01 AM
To protect and increase your account security regularly changing of passwords can also help to improve your account safety. As reputable user you don't need to stressed yourself much and besides the dream of this forum is enable everyone has a seamless access and will power to control their account without any restrictions that limit people especially newbies not to have the utmost accessibility to the forum. The forum is place to teach and learn things that are related to bitcoin advancement and progression, adding any restrictions is like bridging the mission of Bitcointalk forum, henceforth any one and everyone are liable for their account security.
August 11, 2023, 05:22:25 PM
I was thinking more in the direction as to why it couldn't be possible to develop this Bitcointalk forum into an app that can be downloaded, or if it already exists, or the idea had been downplayed, please hint.
Otherwise and still, any good thought as this concerning security and privacy of accounts is always a welcomed read for me.
Otherwise and still, any good thought as this concerning security and privacy of accounts is always a welcomed read for me.
August 11, 2023, 03:43:06 PM
The fuckin' SMF patch is yet to be enacted by Theymos... This also makes me feel he sees everything that's happening in here.., especially here in the meta- verse 
he gave some merit to the post as well
I keep saying this - If it ain't safe, then it ain't worth the stress this whole time.... I don't think anyone would stay happy if Thier accounts are compromised all of a sudden.
Sandra 🧑🦰
he gave some merit to the post as wellI keep saying this - If it ain't safe, then it ain't worth the stress this whole time.... I don't think anyone would stay happy if Thier accounts are compromised all of a sudden.
Sandra 🧑🦰
August 11, 2023, 06:52:22 AM
Recently, Google added the option of restoring the service by uploading data to the cloud, and certainly your data may be shared across several parties on the Internet. So Google authentication is bad for privacy and security.
If it is an option, does this mean by default they won't do it? It would be terrible if they store your secret key somewhere and allowed someone to access it to expose everything. As much as 2FA is important, but all the data in this forum is available to everyone, there is rarely anything of interest in PM, and the steps to recover the account are quick, hacking forum accounts is nothing more than sabotage activity or for personal reasons.
It would be different for each user of course. A legendary account that has records of trading or something similar is a good target to attack if they want to scam someone. A good example is also given above. Adding more security features is always a welcome addition as long as it doesn't compromise anything else imo. August 11, 2023, 03:10:28 AM
So why don't we add a Google authentication option as a security feature to the forum? This could prevent from account being stolen if the user never showed up after a long period of inactivity or his password has been compromised.
As much as 2FA is important, but all the data in this forum is available to everyone, there is rarely anything of interest in PM, and the steps to recover the account are quick, hacking forum accounts is nothing more than sabotage activity or for personal reasons.
August 11, 2023, 12:23:56 AM
Many times it was asked and Bitcointalk with SMF software will not deploy it offcially. It is also because of limited human resource as theymos is the only who manage the forum software and he does not want to deploy new things which can cause potential security problems.
You must know that 2FA is not a perfect protection for your account if you have practice. If your practice is good with password, Internet using, it is enough to protect your account without 2FA.
Stake your Bitcoin address, message and PGP key too.
[Guide] How to use strong and secure password
Stake your PGP key here
Stake your Bitcoin address and message here
You must know that 2FA is not a perfect protection for your account if you have practice. If your practice is good with password, Internet using, it is enough to protect your account without 2FA.
Stake your Bitcoin address, message and PGP key too.
[Guide] How to use strong and secure password
Stake your PGP key here
Stake your Bitcoin address and message here
hero member
Activity: 532
Merit: 508
Leading Crypto Sports Betting & Casino Platform
August 10, 2023, 09:14:48 PM
When you can prove authenticity by signing a message from any of your old/staked bitcoin address. why bother having 2FA? Learn to sign message if you are worried about account comprising.
There's a need for 2FA integration in the forum. just as PowerGlove has also suggested on the thread provided by un_rank, and many reputable members have also concurred with the idea because of the importance of more security features.
Imagine someone gaining access to your account and taking a non-collateral loan of $5,000, or maybe the person posts a malware link that results in your account being banned.
e.g. Someone Loan using My Account
August 10, 2023, 06:21:20 PM
... I don't think Theymos has the intention of implementing 2FA authentication in this forum anytime soon.
He is, and theymos already give a thumbs up on what PowerGlove is creating[1], it will be up anytime soon actually. But let's see until theymos implement it successfully coz it's something a pain in the as merging to the current forum.[1] https://bitcointalksearch.org/topic/a-concise-2fatotp-implementation-smf-patch-5457330
August 10, 2023, 03:31:25 PM
2FA is a good security measure to prevent account thefts and has been suggested several times on the forum. Staked address is a measure to restore an already stolen account which can already have some damage dealt to the user, but 2FA prevents the damage from happening if done properly from the user.
@PowerGlove created an SMF patch [1] to make it easier for theymos and he dropped some merits there suggesting that theymos is open to including it just as he did with the OP tag on the thread starter. Let us wait a bit and see if any changes occur.
[1] https://bitcointalksearch.org/topic/a-concise-2fatotp-implementation-smf-patch-5457330
- Jay -
@PowerGlove created an SMF patch [1] to make it easier for theymos and he dropped some merits there suggesting that theymos is open to including it just as he did with the OP tag on the thread starter. Let us wait a bit and see if any changes occur.
A user can add secret questions
Secret questions have been disabled on the forum due to security risk.So why don't we add a Google authentication option as a security feature to the forum?
2FA is good, but Gogle authenticator is the worst privacy option. There are so many preferred ones which the forum can use, or opt for the one created by a forum user.[1] https://bitcointalksearch.org/topic/a-concise-2fatotp-implementation-smf-patch-5457330
- Jay -
August 10, 2023, 03:21:59 PM
When you can prove authenticity by signing a message from any of your old/staked bitcoin address. why bother having 2FA? Learn to sign message if you are worried about account comprising.
Signing a message from staked address is solution of issue when account already got compromised. But until case with your account will be resolved, hacker can make significant damage for you. While having 2FA would be prevention that such things wouldn't happen. 
August 10, 2023, 02:21:27 PM
When you can prove authenticity by signing a message from any of your old/staked bitcoin address. why bother having 2FA? Learn to sign message if you are worried about account comprising.
August 10, 2023, 01:42:33 PM
This has been discussed several times and with what I have seen I don't think Theymos has the intention of implementing 2FA authentication in this forum anytime soon.
Do you agree to have 2fa Authentication on Bitcointalk.org?
Do you agree to have 2fa Authentication on Bitcointalk.org?
2-Factors Authentication
| Topics | Date | written by |
| _______________________________________________________________________________ | ______________ | ________________________ |
| Can bitcointalk.org get 2 factor authentication? | 17/4/2013 | StevenPine |
| Why doesn't Bitcointalk support 2FA? | 14/5/2016 | cryptoheadd |
| 2FA on bitcoin talk | 05/9/2017 | dreamer81 |
| Isn't it time to introduce 2FA to enhance user account security ? | 24/3/2018 | DdmrDdmr |
| Bitcointalk.org 2FA option/feature | 13/11/2018 | tiikol |
| Should there be an option of adding 2fa for forum accounts? | 30/5/2019 | iamsheikhadil |
August 10, 2023, 01:29:05 PM
Bitcointalk is a well-known forum in the crypto industry where being a reputable member is like a dream for many. There are some security measures that can be taken to protect your bitcoin talk account from being stolen or hacked. A user can add secret questions, and stake their BTC address in the forum to protect their account. Despite this sometimes accounts got hacked and are taken by hackers.
So why don't we add a Google authentication option as a security feature to the forum? This could prevent from account being stolen if the user never showed up after a long period of inactivity or his password has been compromised.
So why don't we add a Google authentication option as a security feature to the forum? This could prevent from account being stolen if the user never showed up after a long period of inactivity or his password has been compromised.
Jump to: