2FA for RC?
-
wrote on Dec 16, 2020, 11:17 PM last edited by
Anyone using 2FA TOTP with RC? The plugins I've found are couple of years old.
-
Anyone using 2FA TOTP with RC? The plugins I've found are couple of years old.
wrote on Dec 16, 2020, 11:29 PM last edited by@humptydumpty I'd just make a very long password and trust in fail2ban
-
@humptydumpty I'd just make a very long password and trust in fail2ban
wrote on Dec 16, 2020, 11:31 PM last edited by@marcusquinn I didn't do/config anything with fail2ban. Is it good enough using the default settings? My pass is over 50 characters long with a mix of symbols.
It's still nice to have 2FA though. -
@marcusquinn I didn't do/config anything with fail2ban. Is it good enough using the default settings? My pass is over 50 characters long with a mix of symbols.
It's still nice to have 2FA though.wrote on Dec 16, 2020, 11:32 PM last edited by marcusquinn Dec 16, 2020, 11:33 PM@humptydumpty yeah, Cloudron already thought of that all for us
I know what you're saying, and I like 2FA because it mostly protects people that reuse passwords, but it's really no more secure than good long password if you use unique passwords and a solid password manager.
-
@humptydumpty yeah, Cloudron already thought of that all for us
I know what you're saying, and I like 2FA because it mostly protects people that reuse passwords, but it's really no more secure than good long password if you use unique passwords and a solid password manager.
wrote on Dec 16, 2020, 11:33 PM last edited by@marcusquinn In that case, between Cloudron and Bitwarden's pass generator, we're all set.
-
@marcusquinn In that case, between Cloudron and Bitwarden's pass generator, we're all set.
wrote on Dec 16, 2020, 11:33 PM last edited by@humptydumpty yuuuup!!
-
wrote on Dec 16, 2020, 11:35 PM last edited by
I haven't checked Roundcube - but best advice is for force a minimum 12-char password on any app that has that ability for user's security. It's difficult to enforce uniqueness but easier to encourage it if people are using Bitwarden or similar since it's so easy.
-
wrote on Dec 16, 2020, 11:36 PM last edited by
More password geeking here: https://brandlight.org/h/policies/password-security-policy/
-
More password geeking here: https://brandlight.org/h/policies/password-security-policy/
wrote on Dec 16, 2020, 11:43 PM last edited by@marcusquinn Nice article. I'd like to share this security tip I picked up about Authy. Make sure to disable Multi-device after setting it up. IIRC, it's disabled by default but some people might leave it on after setting up multiple devices.
-
@marcusquinn Nice article. I'd like to share this security tip I picked up about Authy. Make sure to disable Multi-device after setting it up. IIRC, it's disabled by default but some people might leave it on after setting up multiple devices.
wrote on Dec 17, 2020, 12:03 AM last edited by@humptydumpty Yeah, I only use Authy if there's no TOTP code available to save into Enpass/Bitwarden. I do have multi-device but pretty well locked-down through various layers on each.
-
Anyone using 2FA TOTP with RC? The plugins I've found are couple of years old.
wrote on Dec 17, 2020, 12:57 PM last edited by@humptydumpty said in 2FA for RC?:
Anyone using 2FA TOTP with RC? The plugins I've found are couple of years old.
This plugin was updated as recently as 4 months ago and works just fine: https://github.com/alexandregz/twofactor_gauthenticator
-
@humptydumpty said in 2FA for RC?:
Anyone using 2FA TOTP with RC? The plugins I've found are couple of years old.
This plugin was updated as recently as 4 months ago and works just fine: https://github.com/alexandregz/twofactor_gauthenticator
wrote on Dec 17, 2020, 3:16 PM last edited by@necrevistonnezr It's working great. Thank you!
I know I'm going to need this when it's time to update the plugin. Make sure to remove the -master from the folder name so it's just "twofactor_gauthenticator" and use the code mentioned in the Cloudron doc page, and not the one on the plugin's github page.
array_push($config['plugins'], 'twofactor_gauthenticator');