Two-step verification (2FA) now required on all accounts (2 Viewers)

Pretty sure this guy had no seatbelts in back
39053574022_original.jpg

This car is a representation of this forum without 2FA :LOL: :laugh:
 
buffalojim said:
I was just gonna say this, my mother's Buick Century or something was like that.
Click to expand...

I remember my grandparents having one of these 79 Buick Century wagons.(maybe older) My cousins and I used to ride in the back by the rear door on the way to the shore.

download.jpg
 
Tommy said:
I remember my grandparents having one of these 79 Buick Century wagons.(maybe older) My cousins and I used to ride in the back by the rear door on the way to the shore.

View attachment 844156
Click to expand...

My folks had something similar. We used to put down all the seats and sleep in sleeping bags on our big family trips down to Florida. Leave Friday night, wake up at like 7am and you're already in Georgia. The good ol' days lol.
 
Craig D said:
I've enjoyed PCF but I'm out after I can't log in anymore because of 2FA... It will be a PITA just to visit...

I've enjoyed the ride talking about chips, I will miss Jim's sales as I won't see them (more chips for others)

If you want me back, let me know when 2FA is removed from the forum, Email because I won't be able to read PMs

I understand your forum, your rules

Have Fun
Click to expand...
You will be missed.

I'm just kidding.....
IMG_20220110_123142.gif
 
Craig D said:
I've enjoyed PCF but I'm out after I can't log in anymore because of 2FA... It will be a PITA just to visit...

I've enjoyed the ride talking about chips, I will miss Jim's sales as I won't see them (more chips for others)

If you want me back, let me know when 2FA is removed from the forum, Email because I won't be able to read PMs

I understand your forum, your rules

Have Fun
Click to expand...
Woowwwwwww.
 
TheOffalo said:
I remember road trips as kids and flopping all over the back seat and even getting up on that “shelf” behind the seats under the rear windshield. Wasn’t until I was a teenager in the late 80s/early 90s that we started wearing seat belts in the back seats.
Click to expand...
Lol - same here. My Dad always had the huge Buicks and I would sleep on the back shelf under the rear glass on road trips.

My younger sisters infant “car seat” was a laundry basket with a blanket in iT and me in the back seat holding on to it :ROFL: :ROFLMAO:. We’re all pretty lucky to still be here if you think about it.

Fast forward - My kids definitely had the best car seats I could find and they still sit in the back seat - lol.
 
Craig D said:
I've enjoyed PCF but I'm out after I can't log in anymore because of 2FA... It will be a PITA just to visit...

I've enjoyed the ride talking about chips, I will miss Jim's sales as I won't see them (more chips for others)

If you want me back, let me know when 2FA is removed from the forum, Email because I won't be able to read PMs

I understand your forum, your rules

Have Fun
Click to expand...
Send me your password, ill set it up for you!









For real if you need help setting it up just shoot me a pm! - without any login infos
 
I updated the first post with a more detailed "How To" for setting it up about a week ago. If I missed something or can explain something better, let me know. I can revise it
 
Craig D said:
I've enjoyed PCF but I'm out after I can't log in anymore because of 2FA... It will be a PITA just to visit...

I've enjoyed the ride talking about chips, I will miss Jim's sales as I won't see them (more chips for others)

If you want me back, let me know when 2FA is removed from the forum, Email because I won't be able to read PMs

I understand your forum, your rules

Have Fun
Click to expand...
For a lot of folks, 2FA is something new and like most new things if you have a bad experience it can turn you off from adopting it. Using a quality 2FA app can make things much easier for you. For instance, I only have to verify my second factor about once every 30 days and it's very quick if I have access to my phone which I always do. It can get complex if something were to happen to my phone but backups definitely help simplify things.
 
buzzmonkey said:
For a lot of folks, 2FA is something new and like most new things if you have a bad experience it can turn you off from adopting it. Using a quality 2FA app can make things much easier for you. For instance, I only have to verify my second factor about once every 30 days and it's very quick if I have access to my phone which I always do. It can get complex if something were to happen to my phone but backups definitely help simplify things.
Click to expand...
Yeah, I actually like having 2FA on all my sites. Better then using "hope" to protect my accounts.
 
buzzmonkey said:
For a lot of folks, 2FA is something new and like most new things if you have a bad experience it can turn you off from adopting it. Using a quality 2FA app can make things much easier for you. For instance, I only have to verify my second factor about once every 30 days and it's very quick if I have access to my phone which I always do. It can get complex if something were to happen to my phone but backups definitely help simplify things.
Click to expand...
The 30 days depends on the browser settings. I believe it's accomplshed via a cookie, and if you have your browser set to automatically delete cookies when the browser is closed, that also gets wiped. I confirmed this in Firefox, as it has a "delete cookies and site data when Firefox is closed" option, which I've enabled. The end result is that if you wish to use that setting set in your browser, you either have to add PCF as an exception, or enter the 2FA code every time you open the browser to access the site.
 
Craig D said:
I've enjoyed PCF but I'm out after I can't log in anymore because of 2FA... It will be a PITA just to visit...
Click to expand...

The average person looks at their phone over 100 times per day.

PCF: "We need you to look at your phone for about 3 seconds to read a number".

People: "Nope, nope! Not doing it, it's too much hassle. Let me know when all I have to do is enter a long string of characters for my username, and a sufficiently strong password, but to also look at my phone to enter a couple of numbers, woah woah woah cowboy". Closes PCF. Opens new browser window on phone to check the news/weather.
 
I can actually understand that stance, to a degree. It does add another task you're periodically prompted for, and it requires new stuff, and if you don't even use the classifieds, it makes you think: "Why, just why? It's unnecessary for me personally."

My parents have super old, super simple mobile phones. They don't use apps, they don't use mobile internet, all they do with these phones is phoning and sometimes sending plain old SMS. Now for banking, over a very long period of time they also had some 2FA forced upon them, but in a way that was compatible to the maximum and as unobtrusive as possible: they'd receive an SMS with a code to enter, so any mobile phone no matter how old would do. Secondly, they'd only get the prompt when actually trying to do something, like wiring money somewhere. Just for logging in, checking their balance, downloading their account statements it was not required. Now recently, this 2FA method was dropped. They could then choose between a mobile phone app (which doesn't run on their phones, and they do not want any new ones since they fulfill all their needs and are still working fine) or to buy some hardware device that would act as a code generator. In addition, now they are even forced to do 2FA at every single login, then again for placing wire transfer orders or even just simple things like downloading account statements. It absolutely infuriates them: Because stuff is forced upon them, options are taken from them, for no apparent benefit at all.

What about making 2FA optional for members, but only require its activation if you wish to see and post in in the classifieds section? Kind of like the opt-in for the politics subforum. Not every account on here does need that level of security to fulfill the goal of making trades safer.
 
Problem is - things change, the world changes, and the cyber ("love" that word) threat picture today is not the same as it was just 10 years ago (let alone 20). Just getting access to someone's account today can have much larger consequences than only a few years back, most people don't think it that way. But threat actors know that all too well, and are not afraid of using it for what it's worth.
 
Nex said:
What about making 2FA optional for members, but only require its activation if you wish to see and post in in the classifieds section? Kind of like the opt-in for the politics subforum. Not every account on here does need that level of security to fulfill the goal of making trades safer.
Click to expand...

I think you'll just see more threads and posts for selling outside of the Classifieds/Auction sections. If a member not using 2FA has their account taken over, technically the scammer can enable 2FA and use the classifieds.
 
Tommy said:
I think you'll just see more threads and posts for selling outside of the Classifieds/Auction sections. If a member not using 2FA has their account taken over, technically the scammer can enable 2FA and use the classifieds.
Click to expand...
On the flip side, someone determined to scam can create an account, enable 2FA, post for a while to get established, and they scam in private or in the classifieds/auctions.

The solution to stop buyers from getting scammed and losing money is to use a payment method that provides buyer protection. PayPal Goods and Services.

It's a damned if you do, damned if you don't situation I guess.
 
The brute force attacks on accounts after 2FA dropped by 90ish %

These are the only ones in the last 24hrs. Some could be a legit failed logins but some of these usernames don't even exist.

2022-01-12_04-58-00.png
 
buffalojim said:
Pretty sure this guy had no seatbelts in back
View attachment 844155
This car is a representation of this forum without 2FA :LOL: :laugh:
Click to expand...
I had a 1970 Toronado with a 455 that would do at least 145 (the roller speedometer quit at that, but even there it had some punch left in the throttle) and all it had was a bench seat in front with lap belts. No headrests.
 
Last edited:
Nex said:
I can actually understand that stance, to a degree. It does add another task you're periodically prompted for, and it requires new stuff, and if you don't even use the classifieds, it makes you think: "Why, just why? It's unnecessary for me personally."

My parents have super old, super simple mobile phones. They don't use apps, they don't use mobile internet, all they do with these phones is phoning and sometimes sending plain old SMS. Now for banking, over a very long period of time they also had some 2FA forced upon them, but in a way that was compatible to the maximum and as unobtrusive as possible: they'd receive an SMS with a code to enter, so any mobile phone no matter how old would do. Secondly, they'd only get the prompt when actually trying to do something, like wiring money somewhere. Just for logging in, checking their balance, downloading their account statements it was not required. Now recently, this 2FA method was dropped. They could then choose between a mobile phone app (which doesn't run on their phones, and they do not want any new ones since they fulfill all their needs and are still working fine) or to buy some hardware device that would act as a code generator. In addition, now they are even forced to do 2FA at every single login, then again for placing wire transfer orders or even just simple things like downloading account statements. It absolutely infuriates them: Because stuff is forced upon them, options are taken from them, for no apparent benefit at all.

What about making 2FA optional for members, but only require its activation if you wish to see and post in in the classifieds section? Kind of like the opt-in for the politics subforum. Not every account on here does need that level of security to fulfill the goal of making trades safer.
Click to expand...
Get them a YubiKey. They can just leave it plugged into their laptop.

https://www.yubico.com/
 
Nex said:
It absolutely infuriates them: Because stuff is forced upon them, options are taken from them, for no apparent benefit at all.
Click to expand...
Uh...but there is a benefit for them. It's called security.
 
Has anyone else had trouble with 2FA? It has been working fine for me for almost a year. Today I logged into my laptop and it did not send the email with the code for me to get in. So my laptop is unable to log in. I sent this info to Tommy and he basically said that sometimes it works and sometimes it doesn’t. That maybe I should get some sort of app? This doesn’t sound right to me.
 

Create an account or login to comment

You must be a member in order to leave a comment

Create account

Create an account and join our community. It's easy!

Register

Log in

Already have an account? Log in here.

Similar threads

Tommy
  • Locked
  • Sticky
HOW TO: Two-step verification (2FA) Setup & Help
Replies
7
Views
577
Tommy
Tommy
Tommy
PSA: Comcast Data Breach
Replies
0
Views
316
Tommy
Tommy
3
I built a website to help organize cash games
Replies
18
Views
1K
jkoclanis67
jkoclanis67
SpaceMonkey420
BIG O - $1/$2 Cash game - private poker online
Replies
13
Views
413
BarrieJ3
BarrieJ3
inapinch
PSA: eBay now has text-recognition in PM, here's a tip
Replies
4
Views
274
greenchip
greenchip
Back
Top Bottom