Welcome to Centmin Mod Community
Become a Member

Cloudflare Cloudflare steps up 2 Factor Authentication support

Discussion in 'Domains, DNS, Email & SSL Certificates' started by eva2000, Feb 17, 2017.

  1. eva2000

    eva2000 Administrator Staff Member

    30,912
    6,908
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,404
    Local Time:
    3:35 PM
    Nginx 1.13.x
    MariaDB 5.5
    Looks like Cloudflare is taking 2FA to a new level by adding additing 2FA methods for Google Authenticator and any Time-based One Time Password (TOTP) along with existing Authy 2FA You can now use Google Authenticator and any TOTP app for Two-Factor Authentication

     
    • Like Like x 1
  2. SFLC

    SFLC Active Member

    224
    59
    28
    Dec 4, 2016
    The Canadas
    Ratings:
    +112
    Local Time:
    7:35 AM
    1
    10
    Nice thanks @eva2000, time to set this up.

    On another note about 2 hrs ago I got my u2f security key and it's very cool, the only accounts that I have that support this is google but I'm sure this will become mainstream eventually. I also set it up to login to my computer, I'm not sure how it works on windows, but on mac I edited /etc/pam.d to make account passwords as sufficient and the u2f key as required instead, so basically without the security key no one can login. Needless to mention I ordered another key so I can have a backup.

    I think this may be possible to set for remote servers, but would need some sort of remote way for the server through ssh to read the u2f plugged into the local machine, which I'm not sure if it's even possible at this time or not, but I think this would be a superior alternative to GA, or in addition to make it basically impossible for someone to break into the server, at least not through ssh.
     
  3. eva2000

    eva2000 Administrator Staff Member

    30,912
    6,908
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,404
    Local Time:
    3:35 PM
    Nginx 1.13.x
    MariaDB 5.5
    u2f ?
     
  4. SFLC

    SFLC Active Member

    224
    59
    28
    Dec 4, 2016
    The Canadas
    Ratings:
    +112
    Local Time:
    7:35 AM
    1
    10
    Ya I don't know how long these things have been out,

    HyperFIDO

    Universal 2nd Factor - Wikipedia

    This may be overkill but I'd rather go too far and not get hacked than to be slightly lax and a moldovan hacker breaks into my accounts :ninja:
     
    • Informative Informative x 1
  5. SFLC

    SFLC Active Member

    224
    59
    28
    Dec 4, 2016
    The Canadas
    Ratings:
    +112
    Local Time:
    7:35 AM
    1
    10
    The only reason I even know about this is because we use them at work, doesnt matter if your password is 123456 or if u even share your password, no key = no access
     
    • Like Like x 1
  6. eva2000

    eva2000 Administrator Staff Member

    30,912
    6,908
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,404
    Local Time:
    3:35 PM
    Nginx 1.13.x
    MariaDB 5.5
    nice very interesting :)