Chicago Fanatics Message Board
https://mail.chicagofanatics.com/

2 Factor Authorization to open work email
https://mail.chicagofanatics.com/viewtopic.php?f=47&t=130314		 Page 1 of 1
Author:  conns7901 [ Wed Aug 02, 2023 1:52 pm ]
Post subject:  2 Factor Authorization to open work email
Is this common in non school settings? Our brand new tech guy is instituting this. I guess a positive is I will be less likely to check my work email.
Author:  KDdidit [ Wed Aug 02, 2023 2:17 pm ]
Post subject:  Re: 2 Factor Authorization to open work email
We pointlessly started it in my non-school work last year.
Author:  OscarTangoEcho [ Wed Aug 02, 2023 2:19 pm ]
Post subject:  Re: 2 Factor Authorization to open work email
I think it is common...not a big thing when it's working...press a button on your computer, then one on your phone
Author:  Douchebag [ Wed Aug 02, 2023 2:20 pm ]
Post subject:  Re: 2 Factor Authorization to open work email
Is the 2 Factor Authorization to open an individual email, or to just open your email software (i.e. Outlook)?
Author:  denisdman [ Wed Aug 02, 2023 2:32 pm ]
Post subject:  Re: 2 Factor Authorization to open work email
We do not have it for Outlook on our phones, but there is special security software added to your phone to protect the company. We only use two factor when logging into our laptops outside company offices.
Author:  This Ends in Antioch [ Wed Aug 02, 2023 3:02 pm ]
Post subject:  Re: 2 Factor Authorization to open work email
No two factor for email but an insane password requirement and the email closes after about 5 seconds of inactivity. Phone locks and have to start all over.
Author:  RFDC [ Wed Aug 02, 2023 3:07 pm ]
Post subject:  Re: 2 Factor Authorization to open work email
THe length requirement for passwords is insane. And we used to create a new one every 30 days. Thankfully they have backed off that 30 day thing.
Author:  billypootons [ Wed Aug 02, 2023 3:09 pm ]
Post subject:  Re: 2 Factor Authorization to open work email
for some apps we have to have the microsoft authenticator app on our phone to approve our sign ins. given how many ransomware attacks occur i dont blame IT guys for requiring 2 factor
Author:  Bagels [ Wed Aug 02, 2023 3:14 pm ]
Post subject:  Re: 2 Factor Authorization to open work email
RFDC wrote:
THe length requirement for passwords is insane. And we used to create a new one every 30 days. Thankfully they have backed off that 30 day thing.


Yea i dealt w/ a lot of automotive suppliers who forced you to change it ever 30 days. And naturally it couldn't be one that you used previously. Like wtf.
Author:  W_Z [ Wed Aug 02, 2023 3:21 pm ]
Post subject:  Re: 2 Factor Authorization to open work email
we have it now as part of opening our network. outlook, etc. it's for all of it, through MS. it's real annoying.
Author:  OscarTangoEcho [ Wed Aug 02, 2023 3:23 pm ]
Post subject:  Re: 2 Factor Authorization to open work email
I'm sure part of it is simply aging...but I could remember (and still do) a slew of phone numbers...all that space in my head is now occupied by fucking passwords

I hate passwords and I really hate having to change them
Author:  Nas [ Wed Aug 02, 2023 3:27 pm ]
Post subject:  Re: 2 Factor Authorization to open work email
It gives me a false sense of security. That's good enough for me.
Author:  BigW72 [ Wed Aug 02, 2023 4:12 pm ]
Post subject:  Re: 2 Factor Authorization to open work email
To answer your question...yes, it's common in the corporate world. Not specific to email, but we have to do it for all software on a daily basis.
Author:  Bagels [ Wed Aug 02, 2023 4:27 pm ]
Post subject:  Re: 2 Factor Authorization to open work email
OscarTangoEcho wrote:
I'm sure part of it is simply aging...but I could remember (and still do) a slew of phone numbers...all that space in my head is now occupied by fucking passwords

I hate passwords and I really hate having to change them


it occurred to me what would happen if my phone got stolen/lost. I don't know anyone's phone # anymore. Like how would I contact anyone.
Author:  conns7901 [ Wed Aug 02, 2023 5:26 pm ]
Post subject:  Re: 2 Factor Authorization to open work email
Douchebag wrote:
Is the 2 Factor Authorization to open an individual email, or to just open your email software (i.e. Outlook)?


To open Gmail.
Author:  IkeSouth [ Wed Aug 02, 2023 5:34 pm ]
Post subject:  Re: 2 Factor Authorization to open work email
basic passwords + two factor is the only decent security these days. complex passwords dont work, as youre constantly forgetting them or they make you change them a lot.

i believe the next big craze is voice authentication. apparently its getting good enough they trust it as a password.
Author:  conns7901 [ Wed Aug 02, 2023 6:22 pm ]
Post subject:  Re: 2 Factor Authorization to open work email
IkeSouth wrote:

i believe the next big craze is voice authentication. apparently its getting good enough they trust it as a password.


Sounds like something AI would be able to copy easily.
Author:  Juice's Lecture Notes [ Wed Aug 02, 2023 6:33 pm ]
Post subject:  Re: 2 Factor Authorization to open work email
Is everyone's 2FA SMS-based or using some key-generating authenticator? I feel like the services I have that use a key-gen are super secure compared to SMS, but most big name services don't appear to use it.
Author:  IkeSouth [ Wed Aug 02, 2023 7:41 pm ]
Post subject:  Re: 2 Factor Authorization to open work email
yea i believe it. SMS i keep getting told is incredibly insecure. but many 2fa use it still. the auth apps seem very good, as they use tokens every signin. many services are jumping on board... i can use google auth app for nextcloud. works perfect.
Author:  Douchebag [ Wed Aug 02, 2023 10:00 pm ]
Post subject:  Re: 2 Factor Authorization to open work email
Bagels wrote:
OscarTangoEcho wrote:
I'm sure part of it is simply aging...but I could remember (and still do) a slew of phone numbers...all that space in my head is now occupied by fucking passwords

I hate passwords and I really hate having to change them


it occurred to me what would happen if my phone got stolen/lost. I don't know anyone's phone # anymore. Like how would I contact anyone.

222-2222
Author:  Dr. Kenneth Noisewater [ Thu Aug 03, 2023 8:30 am ]
Post subject:  Re: 2 Factor Authorization to open work email
It's an insurance and customer-relationship thing.

To get Cybersecurity coverage, they require you to have it set. Many customers require that level of insurance coverage so you don't really have much choice.

That may not be all cases but those are the ones I've seen.
Author:  IkeSouth [ Thu Aug 03, 2023 11:14 am ]
Post subject:  Re: 2 Factor Authorization to open work email
Dr. Kenneth Noisewater wrote:
It's an insurance and customer-relationship thing.

To get Cybersecurity coverage, they require you to have it set. Many customers require that level of insurance coverage so you don't really have much choice.

That may not be all cases but those are the ones I've seen.


Yep. And it's another reason I wish we could abolish insurance.
Author:  Hussra [ Fri Aug 04, 2023 5:02 am ]
Post subject:  Re: 2 Factor Authorization to open work email
Douchebag wrote:
Is the 2 Factor Authorization to open an individual email, or to just open your email software (i.e. Outlook)?


I don't think he's talking about requiring scanning a QR code every individual email or other 2FA, it's a good idea tho: 99% of ransomware/malware/viruses enter networks/pc's via users opening emails and clicking on what they find inside. Google's AI algorithms for scanning email and filtering spam/viruses are no-contest the best; which is why everyone has dumped exchange for gmail or white-labeled gmail under their own domain.
Author:  Hussra [ Fri Aug 04, 2023 5:17 am ]
Post subject:  Re: 2 Factor Authorization to open work email
IkeSouth wrote:
yea i believe it. SMS i keep getting told is incredibly insecure. but many 2fa use it still. the auth apps seem very good, as they use tokens every signin. many services are jumping on board... i can use google auth app for nextcloud. works perfect.



passwords suck for sure. i try to squirrel them away in keepass and then use either the yubikey or some no-password-required alt method. but yubikey is the best, plug it it in your computer/device and unlock so many apps and websites automagically. i don't think carrying a hardware fob will ever be a mainstream thing, so it's relatively secure due to its obscurity (i.e., the hooker rifling through your shit while you're roofied on the hotel bed doesn't know to take it).

good thing to enable lock-screen lockdown on your android device and activate lockdown mode (no fp/face access) when in questionable company or as you're getting pulled over while muling meth across state lines:

cops can't force you to give up your pin or pattern in any jurisdiction--circuits are split on allowing LE to force your finger on your phone or wave it in front of your face to gain access, some say go ahead, and the rest are dubious that it's not a violation:

Image
Author:  IkeSouth [ Fri Aug 04, 2023 7:26 am ]
Post subject:  Re: 2 Factor Authorization to open work email
I see it as the same as you telling them you can't open your glovebox because it's locked. That's not an excuse. But if they have to destroy it to get in, they better find what they're suspecting.
Author:  Chet Coppock's Fur Coat [ Fri Aug 04, 2023 10:30 am ]
Post subject:  Re: 2 Factor Authorization to open work email
Dr. Kenneth Noisewater wrote:
It's an insurance and customer-relationship thing.

To get Cybersecurity coverage, they require you to have it set. Many customers require that level of insurance coverage so you don't really have much choice.

That may not be all cases but those are the ones I've seen.

And a lot of businesses which do business with the Feds are required to have similar types of processes.
Author:  Clawmaster [ Sun Aug 06, 2023 8:34 am ]
Post subject:  Re: 2 Factor Authorization to open work email
We went to it after our Epic systems went down for a few days a while back.

Microsoft office was also removed from all of our workstations and everything was removed from local and regional shared drives to a cloud based system only accessible via teams which requires access to email.

Regularly have to spend time showing people how to access email, quite a pain in the ass.

We also had to reinforce social media rules as most of the younger peeps were using the apps to share info instead of accessing internal two factor systems.

Have found the tech savvy people are usually two steps ahead of anything corporate tries to do to force peeps to read corporate emails.

Also have creepy patients stalking staff on social media, it's quite a thing if you work with the public, especially the criminal element we deal with on a daily basis.
Page 1 of 1 All times are UTC - 6 hours [ DST ]
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/