{"p":"","h":{"iv":"ROXSYW+cfvEbFHu5","at":"ocxplSQjdRC3tXEtB/9/wg=="}}

You can keep your Mastodon account extra safe by using Two Factor Authentication (2FA).

To activate this, log in through your server's website and go to ⚙️ Preferences > Account > Two Factor Auth, then follow the instructions.

It is slightly tricky to set up, but once it's been set up it's very easy to use.

2FA means that even if someone finds out your password they cannot log in. With 2FA activated, your phone will give you a new code each time you log in to allow your password to work.

19
Share
Share on Mastodon
Share on Twitter
Share on Facebook
Share on Linkedin
FediTips has moved!

p.s. There are LOTS of apps that work with 2FA on Mastodon such as Raivo, Aegis and many others. (They are technically known as "TOTP apps" or "authenticators")

Maybe people can recommend good 2FA apps in the replies?

52
2y
Cookinator

@feditips Aegis authenticator.. And firewalled, so no outgoing connection is allowed from the app

0
2y
JarOCats™

@feditips Google Authenticator. Clean, tiny, and simple to sync among devices.

0
2y
Arnan de Gans

@feditips or you just use a decent password…

0
2y
TeddyBrown

@feditips FreeOTP+

0
2y
muznyo :fedora:

@feditips @ente auth or @bitwarden

0
2y
Chris Johnson

@feditips If you’re on an Apple device running iOS/iPadOS 16 or macOS 13, you can register a passkey as a second factor. Click the link to add a security key, and your device should prompt you to add a passkey (if you have iCloud Keychain enabled).

0
2y
nik-o-mat.de

@feditips Aegis and KeepassXC are working fine for me. Both can handle 2FA TOTP Codes.

0
2y
Sam Shores

@feditips BitWarden supports TOTP, though if you're using their cloud service it requires a paid plan, IIRC. I'm not sure where the self-hosted version lands.

0
2y
@fascinatorfun@mastodon.green

@feditips

But don’t you have to go through that God-awful rigmarole of waiting for a request for authentication every single time you log on ?

I’d just stop tooting.

1
2y
Lucas Treffenstädt

@feditips technical question: does that also work if the server is using ldap for login? Because I don't see the option, but maybe I can get it to work somehow? (I'm running my own instance)

0
2y
Arena Cops

@feditips OK, so mastodon's giving us the secret, but:

We're missing a detailed description about the way to manually set up 2FA, & also about masttodon's configuration of 2FA: What are accepted code-length, hash algorithms, time span? And which are safest & working best?

0
2y
FinchHaven

@feditips

@Fascinatorfun @feditips

So apparently the only way to add 2FA to Mastodon is to use Yet Another(tm) third-party “app”

So that third party - someone unknown to me otherwise- has my phone number *and* all the 2FA transactions I conduct using that app

Why not just send an SMS/text directly to my phone, like my banks and eleventy-dozen other places do

Why drop an app in there at all?

0
2y
Cole Pascua 🇨🇦 🇵🇭 🏳️‍🌈

@feditips I dont seem to see the 2FA options at mstdn.ca?

0
2y
Charles McDonald

@feditips Bitwarden also has a great built in option

0
2y
Roger Leitch

@feditips I use keeper as a password saver
It has built in 2FA which generates codes.

0
2y
snisps

@feditips I use the Yubico Authenticator because I'm Properly Paranoid. You need to physically have the security key to plug into your phone or computer to get a code.

0
2y
Babu Menos

@feditips

But it still *only* allows for 2FA by phone. Anyone without a phone is just… well, too small a group to consider, maybe?

0
2y
Alfredo Montanez 🇺🇸🇺🇦🏳️‍🌈💛

@feditips I never used 2FA because I worry that it would be taken from me like Musk took it away and people couldn't log into their accounts cause of it

1
2y
Replies