skinhead said:He scammed out, lmfao
he tryna cover his tracks but hes too stupid
Totodile said:I believe this idea is already in the works, note this photo:
Clicking that link currently takes you here but it's a blank page.
This idea should100% be implemented though because it would make deals on-site more secure and would stop the "I was compromised" in scams.
It's not FK's job to protect users from being compromised, but this idea would just make the whole site feel more secure overall.
Fedoras said:Maybe make it so if you log in from a different iP your account gets locked for 24 hours, and if pass changes from a different ip it's 48 hours
*Sorry if my grammer is shit, I just got a new thinkpad couple hours ago :|
That's just a very troublesome way of going about it and you have to think about socks5's and how close they can be (location wise) so the system soesmt detect it.Fedoras said:Maybe make it so if you log in from a different iP your account gets locked for 24 hours, and if pass changes from a different ip it's 48 hours
*Sorry if my grammer is shit, I just got a new thinkpad couple hours ago :|
Krish said:That's just a very troublesome way of going about it and you have to think about socks.
Hey, @Satan @Paladin could you guys voice your opinions on this? Like if you support the idea or not?
Satan said:I login on a different IP every time I use FK. Several people use the VPN service I use as well. I think the only time IP's of users are looked into is when they're suspected of multi / faking being compromised.
Also, SOCKS5 usually die within 48-72 hours even when private/ VIP72. If a user has logged into FK from the same residential connection over weeks, it's probably not a socks.
Krish said:Are there Vpn gate servers that are up 24/7? As I know those emulate home connections. Question posed here is do you think the effort to put in 2FA on FK is worth it?
You said 2fa doesn't help if everything is jacked? You'd need the physical device the 2Step QR has been loaded onto to get the code to log in to fk in the first place. I use Riseup myself and you're right, I absolutely love the service but a lot of members would have a hard time getting thier hands on an invite code.Satan said:2FA wont help if the person was stupid enough to get compromised in the first place. 2FA wont work if everything the person owns is jacked.
I think a mandatory password change every 72 days or so would be pretty nice, as well as a required strong password.
There's still tons of people using uniform passwords throughout all their accounts.
This is more of a problem with users, rather than the site. Stop using insecure email services, weak and common passwords, or sharing passes across sites.
Again, the only secure (imho) email services are https://www.autistici.org and https://www.riseup.net.
I use generated passwords from https://xkpasswd.net/s/ (WEB16)
Krish said:You said 2fa doesn't help if everything is jacked? You'd need the physical device the 2Step QR has been loaded onto to get the code to log in to fk in the first place. I use Riseup myself and you're right, I absolutely love the service but a lot of members would have a hard time getting thier hands on an invite code.
Can I put you down as you supporting the idea of implementing Google Authentication?Satan said:A code being sent to the physical device is the only 2FA that I'd recommend.
Sure, I'm all for it so I don't have to see someone making a new post every 24 hours because their Yahoo had the same password as their Instagram and Facebook.Krish said:Can I put you down as you supporting the idea of implementing Google Authentication?
Satan said:Sure, I'm all for it so I don't have to see someone making a new post every 24 hours because their Yahoo had the same password as their Instagram and Facebook.
Color said:Generally, the accounts that are vulnerable are those yet to be banned from pre-2013, when the database was leaked, that haven't signed in to secure their account. Aside from this, the rest are usually an issue on the users side. There is a two step authentication setting in the UCP, accessible to all who deem necessary. It's been made very clear that thisexcuse won't fly. Unfortunate for some, but a comfortable precaution.
This does bring a thought up for me, though. I'll run it by.
We use cookies and similar technologies for the following purposes:
Do you accept cookies and these technologies?
We use cookies and similar technologies for the following purposes:
Do you accept cookies and these technologies?