It is currently Sat Nov 23, 2024 5:20 am

All times are UTC - 6 hours [ DST ]




Post new topic Reply to topic  [ 27 posts ] 
Author Message
PostPosted: Wed Aug 02, 2023 1:52 pm 
Offline
User avatar

Joined: Wed Nov 30, 2005 11:36 pm
Posts: 19369
Is this common in non school settings? Our brand new tech guy is instituting this. I guess a positive is I will be less likely to check my work email.

_________________
Frank Coztansa wrote:
conns7901 wrote:
Not over yet.
Yes it is.


CDOM wrote:
When this is all over, which is not going to be for a while, Trump will be re-elected President.


Top
 Profile  
 
PostPosted: Wed Aug 02, 2023 2:17 pm 
Offline
User avatar

Joined: Tue Jun 27, 2006 11:28 am
Posts: 23825
Location: Boofoo Zoo
pizza_Place: Chuck E Cheese
We pointlessly started it in my non-school work last year.


Top
 Profile  
 
PostPosted: Wed Aug 02, 2023 2:19 pm 
Offline
User avatar

Joined: Fri Nov 02, 2018 12:02 pm
Posts: 2190
Location: What are you, my mother?
pizza_Place: D'Agostino's
I think it is common...not a big thing when it's working...press a button on your computer, then one on your phone


Top
 Profile  
 
PostPosted: Wed Aug 02, 2023 2:20 pm 
Offline
User avatar

Joined: Tue Aug 19, 2008 3:03 pm
Posts: 43566
Is the 2 Factor Authorization to open an individual email, or to just open your email software (i.e. Outlook)?

_________________
Juice's Lecture Notes wrote:
I am not a legal expert, how many times do I have to say it?


Top
 Profile  
 
PostPosted: Wed Aug 02, 2023 2:32 pm 
Offline
User avatar

Joined: Thu Jun 22, 2006 3:55 pm
Posts: 33067
Location: Wrigley
pizza_Place: Warren Buffet of Cock
We do not have it for Outlook on our phones, but there is special security software added to your phone to protect the company. We only use two factor when logging into our laptops outside company offices.

_________________
Hawaii (fuck) You


Top
 Profile  
 
PostPosted: Wed Aug 02, 2023 3:02 pm 
Offline
User avatar

Joined: Fri Sep 18, 2020 8:05 pm
Posts: 24040
pizza_Place: Pizanos
No two factor for email but an insane password requirement and the email closes after about 5 seconds of inactivity. Phone locks and have to start all over.

_________________
Peter Clavin wrote:
Because you are stupid, maybe read some books educate yourself.
Nardi wrote:
We walk, talk, and won't shit our pants


Top
 Profile  
 
PostPosted: Wed Aug 02, 2023 3:07 pm 
Offline
User avatar

Joined: Sun May 11, 2008 4:11 pm
Posts: 57230
THe length requirement for passwords is insane. And we used to create a new one every 30 days. Thankfully they have backed off that 30 day thing.

_________________
"He is a loathsome, offensive brute
--yet I can't look away."


Frank Coztansa wrote:
I have MANY years of experience in trying to appreciate steaming piles of dogshit.


Top
 Profile  
 
PostPosted: Wed Aug 02, 2023 3:09 pm 
Offline
User avatar

Joined: Fri May 17, 2013 6:09 pm
Posts: 11002
pizza_Place: Generic Pizza Store
for some apps we have to have the microsoft authenticator app on our phone to approve our sign ins. given how many ransomware attacks occur i dont blame IT guys for requiring 2 factor


Top
 Profile  
 
PostPosted: Wed Aug 02, 2023 3:14 pm 
Offline
User avatar

Joined: Wed Nov 01, 2006 1:10 pm
Posts: 32067
pizza_Place: Milano's
RFDC wrote:
THe length requirement for passwords is insane. And we used to create a new one every 30 days. Thankfully they have backed off that 30 day thing.


Yea i dealt w/ a lot of automotive suppliers who forced you to change it ever 30 days. And naturally it couldn't be one that you used previously. Like wtf.


Top
 Profile  
 
PostPosted: Wed Aug 02, 2023 3:21 pm 
Offline
User avatar

Joined: Tue Oct 10, 2006 7:56 pm
Posts: 37832
Location: ...
we have it now as part of opening our network. outlook, etc. it's for all of it, through MS. it's real annoying.


Top
 Profile  
 
PostPosted: Wed Aug 02, 2023 3:23 pm 
Offline
User avatar

Joined: Fri Nov 02, 2018 12:02 pm
Posts: 2190
Location: What are you, my mother?
pizza_Place: D'Agostino's
I'm sure part of it is simply aging...but I could remember (and still do) a slew of phone numbers...all that space in my head is now occupied by fucking passwords

I hate passwords and I really hate having to change them


Top
 Profile  
 
PostPosted: Wed Aug 02, 2023 3:27 pm 
Offline
100000 CLUB
User avatar

Joined: Tue Mar 29, 2005 8:06 pm
Posts: 81466
pizza_Place: 773-684-2222
It gives me a false sense of security. That's good enough for me.

_________________
Be well

GO BEARS!!!


Top
 Profile  
 
PostPosted: Wed Aug 02, 2023 4:12 pm 
Offline
User avatar

Joined: Mon Aug 07, 2006 8:35 pm
Posts: 10793
Location: Parrish, FL
pizza_Place: 1. Peaquods 2. Aurelios
To answer your question...yes, it's common in the corporate world. Not specific to email, but we have to do it for all software on a daily basis.

_________________
This Ends in Antioch wrote:
brick (/brik/) verb
1. block or enclose with a wall of bricks
2. Proper response would be to ask an endless series of follow ups until the person regrets having spoken to you in the first place.


Top
 Profile  
 
PostPosted: Wed Aug 02, 2023 4:27 pm 
Offline
User avatar

Joined: Wed Nov 01, 2006 1:10 pm
Posts: 32067
pizza_Place: Milano's
OscarTangoEcho wrote:
I'm sure part of it is simply aging...but I could remember (and still do) a slew of phone numbers...all that space in my head is now occupied by fucking passwords

I hate passwords and I really hate having to change them


it occurred to me what would happen if my phone got stolen/lost. I don't know anyone's phone # anymore. Like how would I contact anyone.


Top
 Profile  
 
PostPosted: Wed Aug 02, 2023 5:26 pm 
Offline
User avatar

Joined: Wed Nov 30, 2005 11:36 pm
Posts: 19369
Douchebag wrote:
Is the 2 Factor Authorization to open an individual email, or to just open your email software (i.e. Outlook)?


To open Gmail.

_________________
Frank Coztansa wrote:
conns7901 wrote:
Not over yet.
Yes it is.


CDOM wrote:
When this is all over, which is not going to be for a while, Trump will be re-elected President.


Top
 Profile  
 
PostPosted: Wed Aug 02, 2023 5:34 pm 
Offline
User avatar

Joined: Thu Jul 13, 2006 1:25 pm
Posts: 27055
basic passwords + two factor is the only decent security these days. complex passwords dont work, as youre constantly forgetting them or they make you change them a lot.

i believe the next big craze is voice authentication. apparently its getting good enough they trust it as a password.

_________________
the world will always the world. your entire existence is defined by your response.


Top
 Profile  
 
PostPosted: Wed Aug 02, 2023 6:22 pm 
Offline
User avatar

Joined: Wed Nov 30, 2005 11:36 pm
Posts: 19369
IkeSouth wrote:

i believe the next big craze is voice authentication. apparently its getting good enough they trust it as a password.


Sounds like something AI would be able to copy easily.

_________________
Frank Coztansa wrote:
conns7901 wrote:
Not over yet.
Yes it is.


CDOM wrote:
When this is all over, which is not going to be for a while, Trump will be re-elected President.


Top
 Profile  
 
PostPosted: Wed Aug 02, 2023 6:33 pm 
Offline
User avatar

Joined: Tue Jan 26, 2016 4:46 pm
Posts: 22456
pizza_Place: Giordano's
Is everyone's 2FA SMS-based or using some key-generating authenticator? I feel like the services I have that use a key-gen are super secure compared to SMS, but most big name services don't appear to use it.


Top
 Profile  
 
PostPosted: Wed Aug 02, 2023 7:41 pm 
Offline
User avatar

Joined: Thu Jul 13, 2006 1:25 pm
Posts: 27055
yea i believe it. SMS i keep getting told is incredibly insecure. but many 2fa use it still. the auth apps seem very good, as they use tokens every signin. many services are jumping on board... i can use google auth app for nextcloud. works perfect.

_________________
the world will always the world. your entire existence is defined by your response.


Top
 Profile  
 
PostPosted: Wed Aug 02, 2023 10:00 pm 
Offline
User avatar

Joined: Tue Aug 19, 2008 3:03 pm
Posts: 43566
Bagels wrote:
OscarTangoEcho wrote:
I'm sure part of it is simply aging...but I could remember (and still do) a slew of phone numbers...all that space in my head is now occupied by fucking passwords

I hate passwords and I really hate having to change them


it occurred to me what would happen if my phone got stolen/lost. I don't know anyone's phone # anymore. Like how would I contact anyone.

222-2222

_________________
Juice's Lecture Notes wrote:
I am not a legal expert, how many times do I have to say it?


Top
 Profile  
 
PostPosted: Thu Aug 03, 2023 8:30 am 
Offline
User avatar

Joined: Fri Oct 20, 2006 9:15 pm
Posts: 48800
Location: Bohemian Club Annual World Power Consolidation Conference & Golf Outing
pizza_Place: World Fluoridation Conspiracy Pizza & WINGS!
It's an insurance and customer-relationship thing.

To get Cybersecurity coverage, they require you to have it set. Many customers require that level of insurance coverage so you don't really have much choice.

That may not be all cases but those are the ones I've seen.

_________________
You know me like that.


Top
 Profile  
 
PostPosted: Thu Aug 03, 2023 11:14 am 
Offline
User avatar

Joined: Thu Jul 13, 2006 1:25 pm
Posts: 27055
Dr. Kenneth Noisewater wrote:
It's an insurance and customer-relationship thing.

To get Cybersecurity coverage, they require you to have it set. Many customers require that level of insurance coverage so you don't really have much choice.

That may not be all cases but those are the ones I've seen.


Yep. And it's another reason I wish we could abolish insurance.

_________________
the world will always the world. your entire existence is defined by your response.


Top
 Profile  
 
PostPosted: Fri Aug 04, 2023 5:02 am 
Offline
User avatar

Joined: Mon Apr 14, 2014 10:45 am
Posts: 16820
pizza_Place: Salerno's
Douchebag wrote:
Is the 2 Factor Authorization to open an individual email, or to just open your email software (i.e. Outlook)?


I don't think he's talking about requiring scanning a QR code every individual email or other 2FA, it's a good idea tho: 99% of ransomware/malware/viruses enter networks/pc's via users opening emails and clicking on what they find inside. Google's AI algorithms for scanning email and filtering spam/viruses are no-contest the best; which is why everyone has dumped exchange for gmail or white-labeled gmail under their own domain.


Top
 Profile  
 
PostPosted: Fri Aug 04, 2023 5:17 am 
Offline
User avatar

Joined: Mon Apr 14, 2014 10:45 am
Posts: 16820
pizza_Place: Salerno's
IkeSouth wrote:
yea i believe it. SMS i keep getting told is incredibly insecure. but many 2fa use it still. the auth apps seem very good, as they use tokens every signin. many services are jumping on board... i can use google auth app for nextcloud. works perfect.



passwords suck for sure. i try to squirrel them away in keepass and then use either the yubikey or some no-password-required alt method. but yubikey is the best, plug it it in your computer/device and unlock so many apps and websites automagically. i don't think carrying a hardware fob will ever be a mainstream thing, so it's relatively secure due to its obscurity (i.e., the hooker rifling through your shit while you're roofied on the hotel bed doesn't know to take it).

good thing to enable lock-screen lockdown on your android device and activate lockdown mode (no fp/face access) when in questionable company or as you're getting pulled over while muling meth across state lines:

cops can't force you to give up your pin or pattern in any jurisdiction--circuits are split on allowing LE to force your finger on your phone or wave it in front of your face to gain access, some say go ahead, and the rest are dubious that it's not a violation:

Image


Top
 Profile  
 
PostPosted: Fri Aug 04, 2023 7:26 am 
Offline
User avatar

Joined: Thu Jul 13, 2006 1:25 pm
Posts: 27055
I see it as the same as you telling them you can't open your glovebox because it's locked. That's not an excuse. But if they have to destroy it to get in, they better find what they're suspecting.

_________________
the world will always the world. your entire existence is defined by your response.


Top
 Profile  
 
PostPosted: Fri Aug 04, 2023 10:30 am 
Offline
User avatar

Joined: Tue Mar 24, 2015 9:46 pm
Posts: 10107
pizza_Place: Q's Hillside
Dr. Kenneth Noisewater wrote:
It's an insurance and customer-relationship thing.

To get Cybersecurity coverage, they require you to have it set. Many customers require that level of insurance coverage so you don't really have much choice.

That may not be all cases but those are the ones I've seen.

And a lot of businesses which do business with the Feds are required to have similar types of processes.

_________________
"When people want their version of the truth, they go find it, no matter how baseless their beliefs." -- Ken Rosenthal


Top
 Profile  
 
PostPosted: Sun Aug 06, 2023 8:34 am 
Offline
User avatar

Joined: Tue Jul 23, 2019 7:06 pm
Posts: 4071
pizza_Place: Lino's
We went to it after our Epic systems went down for a few days a while back.

Microsoft office was also removed from all of our workstations and everything was removed from local and regional shared drives to a cloud based system only accessible via teams which requires access to email.

Regularly have to spend time showing people how to access email, quite a pain in the ass.

We also had to reinforce social media rules as most of the younger peeps were using the apps to share info instead of accessing internal two factor systems.

Have found the tech savvy people are usually two steps ahead of anything corporate tries to do to force peeps to read corporate emails.

Also have creepy patients stalking staff on social media, it's quite a thing if you work with the public, especially the criminal element we deal with on a daily basis.


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 27 posts ] 

All times are UTC - 6 hours [ DST ]


Who is online

Users browsing this forum: No registered users and 5 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group