Discuss Scratch
- Discussion Forums
- » Suggestions
- » Read the OP, it's way too long to put on the title
![[RSS Feed]](//cdn.scratch.mit.edu/scratchr2/static/__5b3e40ec58a840b41702360e9891321b__//djangobb_forum/img/feed-icon-small.png "[RSS Feed]")
![[RSS Feed]](http://cdn.scratch.mit.edu/scratchr2/static/__5b3e40ec58a840b41702360e9891321b__//djangobb_forum/img/feed-icon-small.png "[RSS Feed]"){kind=icon}
- SonicFanX123_321
-
Scratcher
1000+ posts
Read the OP, it's way too long to put on the title
Whybecause
- ScratchCatDoBem
-
Scratcher
1000+ posts
Read the OP, it's way too long to put on the title
I almost forgor about this topic :skull:
Last edited by ScratchCatDoBem (Oct. 2, 2022 19:25:19)
- ScratchCatDoBem
-
Scratcher
1000+ posts
Read the OP, it's way too long to put on the title
*sigh* bump
why nobody is discussing about this
why nobody is discussing about this
Last edited by ScratchCatDoBem (Jan. 19, 2023 16:12:49)
- RED-001-alt
-
Scratcher
1000+ posts
Read the OP, it's way too long to put on the title
This would be TFA (2-factor authentication), right? I don't support this, because this is too much work just to sign into an account for a kid's website. Plus, what if the person doesn't have a valid email? If this was something that you could toggle (but be off b default), then that might be OK. I think this might be a dupe too.
- SavetheAtlantic
-
Scratcher
1000+ posts
Read the OP, it's way too long to put on the title
I think this might be a dupe too.You are correct: https://scratch.mit.edu/discuss/topic/291659/
- ScratchCatDoBem
-
Scratcher
1000+ posts
Read the OP, it's way too long to put on the title
It's not 2FA, it's just a token to change your email or password because you need your password to change it (so if someone knows your password, they could change it, not very safe)I think this might be a dupe too.You are correct: https://scratch.mit.edu/discuss/topic/291659/
So yeah, not a dupe (i guess?)
Last edited by ScratchCatDoBem (Jan. 19, 2023 21:23:20)
- ScratchCatDoBem
-
Scratcher
1000+ posts
Read the OP, it's way too long to put on the title
I don't support this, because this is too much work just to sign into an account for a kid's website.It isn't for signing, it's for changing email/password, only
And if someone lost their email, they could use Contact Us to explain the situation, and turn this off
Last edited by ScratchCatDoBem (Jan. 19, 2023 21:12:12)
- warriorcats2155
-
Scratcher
500+ posts
Read the OP, it's way too long to put on the title
There are some cases which a website will block VPNs by checking the IP details and comparing them to a VPN detailsIP bans are useless. VPNs are easily accessible and they will easily bypass the ban.Because then the Scratch Team will IP ban the password guesser/hackerWhy do you need to Contact Us? If a hacker is trying to change your password, just ignore the mail so they can't, so that makes more time for you to change your password before the hacker does something terrible.First password, then email. Even more protectionMore!:
first password, then email to original (current, non-changed email) email saying "Here's your first stage confirmation url for username: url If you did not request this, ignore this email and contact us“, then after first email, to the changed email saying ”Here's your second stage confirmation url for username: url If you did not request this, please ignore this and contact us"
- ajskateboarder
-
Scratcher
1000+ posts
Read the OP, it's way too long to put on the title
There are some cases which a website will block VPNs by checking the IP details and comparing them to a VPN detailsThen use a proxy! They are even easier to setup because they are usually free, and they can be configured anywhere in the world making them impossible to differentiate from a user directly accessing the site.
- SavetheAtlantic
-
Scratcher
1000+ posts
Read the OP, it's way too long to put on the title
That's literally what 2FA is.It's not 2FA, it's just a token to change your email or password because you need your password to change it (so if someone knows your password, they could change it, not very safe)I think this might be a dupe too.You are correct: https://scratch.mit.edu/discuss/topic/291659/
So yeah, not a dupe (i guess?)
- moigam
-
Scratcher
1000+ posts
Read the OP, it's way too long to put on the title
Yes, that could be described as 2FA.That's literally what 2FA is.It's not 2FA, it's just a token to change your email or password because you need your password to change it (so if someone knows your password, they could change it, not very safe)I think this might be a dupe too.You are correct: https://scratch.mit.edu/discuss/topic/291659/
So yeah, not a dupe (i guess?)
2FA stands for two factor authentication. With this, you authenticate the program to do it with 2 factors. (Like two keys you need to put into a lock for something to open)
If I'm wrong, sorry but I think I'm correct.
Last edited by moigam (Jan. 20, 2023 08:34:09)
- -greats-
-
Scratcher
78 posts
Read the OP, it's way too long to put on the title
Perfect. This will add extra protection against account “hackers”; Now they need to know both your email AND its password AND your scratch password.It has never happend. Scratch does not have “hackers” however some people try to brute force their way into someones account. That's not hacking.
And that's not happening unless somebody got into your email. And even then, in pretty much all scenarios they use it for things other than to “hack” your scratch account.
it is hacking too. hacking is a very broad term that can even be used for good.
- -greats-
-
Scratcher
78 posts
Read the OP, it's way too long to put on the title
It's not 2FA, it's just a token to change your email or password because you need your password to change it (so if someone knows your password, they could change it, not very safe)I think this might be a dupe too.You are correct: https://scratch.mit.edu/discuss/topic/291659/
So yeah, not a dupe (i guess?)
u dont even know what 2FA is lol
- ScratchCatDoBem
-
Scratcher
1000+ posts
Read the OP, it's way too long to put on the title
I once knew, but then i left the forums and forgor :skull:It's not 2FA, it's just a token to change your email or password because you need your password to change it (so if someone knows your password, they could change it, not very safe)I think this might be a dupe too.You are correct: https://scratch.mit.edu/discuss/topic/291659/
So yeah, not a dupe (i guess?)
u dont even know what 2FA is lol
but i'm sure that this isn't a dupe
- softlysinging
-
Scratcher
100+ posts
Read the OP, it's way too long to put on the title
You'd have to type your original password, but not if the person who knows your password changes it. You'd have to use a complicated password if you really want to avoid malicious hackers/spam.
- SAVVYSCLUTTER
-
Scratcher
500+ posts
Read the OP, it's way too long to put on the title
Support. This would stop hackers from locking users' accounts.
- ScratchCatDoBem
-
Scratcher
1000+ posts
Read the OP, it's way too long to put on the title
why is nobody saying anything
- SavetheAtlantic
-
Scratcher
1000+ posts
Read the OP, it's way too long to put on the title
why is nobody saying anythingThe word “bump”, surprisingly, is not a genie that magically grants you responses
- Discussion Forums
- » Suggestions
-
» Read the OP, it's way too long to put on the title