Viro_Major
Rad maker
- Jul 30, 2020
- 1,303
To pay tribute / respect, the following development is the courtesy of @HelensNepenthe who imagined it. The idea is evident, simple, yet foolproof. Everybody should consider it, prior to leaving the site (including CTB but not only) in order to protect the whole community with absolute certainty, against the eventual investigation of history trails, especially if PMs were exchanged and not cleared (you can "leave conversations" and should do always, once done with communication)
within any PM, at the top right
Explanation : 2FA security is the activation of a secondary password as a layer on top of the main one which is vulnerable (due to cookies stored not cleared, or password manager used and not uninstalled), which is tied to a physical device (mobile or computer) and only temporary. In fact, the 2FA codes cycle every few seconds to be new and unique permanently.
In other words, even if somebody would find out / retrieve your main password to access your account, they then would be asked to input the 2FA digits' code as an extra unlocking step. We will take care that it won't happen so that your account remains inaccessible forever without a single concern to fear.
It occurs that 2FA security is available at SS. It just seems that almost nobody is aware of its existence and/or make use of it, which is a shame. You should change your habits and make the effort to use it immediately after this reading.
It can be found here
Then there
In order to activate 2FA, please follow the tutorial exposed here
In the end, you'll have a 2FA app, generally Google Authenticator, either on your phone or tablet, that you will need to dispose of the display of the cycling codes to login to your SS account during the time you're around.
Without this app, without 2FA codes, your main text password won't be sufficient. You could be locked outside of your SS account forever, hence a backup of the QR code or secret key when activating the 2FA is strongly recommended initially, as mentioned inside the previous guide. These would serve to reinstall your Google Auth "account" on the same or another device of your choice (even as duplicata, you can have it on multiple devices concurrently)
NB: this 2FA process is not routinely painful. This can't be an excuse to avoid. SS can apply cookies which prevent you to login at each visit, so you don't have to input 2FA codes each time but only occasionally. As a byproduct, please clear cookies when quitting SS, or the same leak of "opened session" could derail our goal. Some browsers do it automatically for you, like Epic browser, or perform the action manually within your usual browser's settings
Final word / concept to apply
When ready to leave SS for good (not in advance), to either CTB or any other reason that would be final, aside clearing your browser's data and notably cookies, history and saved passwords notably, we will maintain 2FA security ON at SS but get rid of both the 2FA app that gives codes as well as any 2FA account backup that you stored. In concrete, just uninstall Google Auth from where it is installed plus discard the backup QR code / secret keys (it should not be a screenshot image saved in the first place, but if it is, just erase the file / send it to the bin and empty ...or tear apart / burn the printed piece of paper on which it appears)
That's it. We're done. We just achieved complete and sealed unreachability for of your SS account (the private part at least), towards the scrutiny of any surroundings (family/relatives and LE at the same time). You can have peace of mind of zero consequences and the Community can thank you for your sense of care towards the ones who remain. Cheers!
within any PM, at the top right
Explanation : 2FA security is the activation of a secondary password as a layer on top of the main one which is vulnerable (due to cookies stored not cleared, or password manager used and not uninstalled), which is tied to a physical device (mobile or computer) and only temporary. In fact, the 2FA codes cycle every few seconds to be new and unique permanently.
In other words, even if somebody would find out / retrieve your main password to access your account, they then would be asked to input the 2FA digits' code as an extra unlocking step. We will take care that it won't happen so that your account remains inaccessible forever without a single concern to fear.
It occurs that 2FA security is available at SS. It just seems that almost nobody is aware of its existence and/or make use of it, which is a shame. You should change your habits and make the effort to use it immediately after this reading.
It can be found here
Then there
In order to activate 2FA, please follow the tutorial exposed here
https://sanctioned-suicide.net/threads/two-factor-authentication-2fa-guide-step-by-step.39353
(if you're lost, ask questions)In the end, you'll have a 2FA app, generally Google Authenticator, either on your phone or tablet, that you will need to dispose of the display of the cycling codes to login to your SS account during the time you're around.
Without this app, without 2FA codes, your main text password won't be sufficient. You could be locked outside of your SS account forever, hence a backup of the QR code or secret key when activating the 2FA is strongly recommended initially, as mentioned inside the previous guide. These would serve to reinstall your Google Auth "account" on the same or another device of your choice (even as duplicata, you can have it on multiple devices concurrently)
NB: this 2FA process is not routinely painful. This can't be an excuse to avoid. SS can apply cookies which prevent you to login at each visit, so you don't have to input 2FA codes each time but only occasionally. As a byproduct, please clear cookies when quitting SS, or the same leak of "opened session" could derail our goal. Some browsers do it automatically for you, like Epic browser, or perform the action manually within your usual browser's settings
Final word / concept to apply
When ready to leave SS for good (not in advance), to either CTB or any other reason that would be final, aside clearing your browser's data and notably cookies, history and saved passwords notably, we will maintain 2FA security ON at SS but get rid of both the 2FA app that gives codes as well as any 2FA account backup that you stored. In concrete, just uninstall Google Auth from where it is installed plus discard the backup QR code / secret keys (it should not be a screenshot image saved in the first place, but if it is, just erase the file / send it to the bin and empty ...or tear apart / burn the printed piece of paper on which it appears)
That's it. We're done. We just achieved complete and sealed unreachability for of your SS account (the private part at least), towards the scrutiny of any surroundings (family/relatives and LE at the same time). You can have peace of mind of zero consequences and the Community can thank you for your sense of care towards the ones who remain. Cheers!
Last edited: