Gmail email security options, should i only have 1 instead of 3 setup?


Recommended Posts

I've been reviewing my Gmail accounts which only had a weak password for logging in, these have been changed via Bitwardens generator so it's completely random and i have also set the MS Authenticator app on my 2 mobile devices.

My confusion is now i have also setup other login security options as below and im concerned whether i should disable these and just rely on the MS Authenticator app?

Access to my mobile devices is via biometric fingerprint.

Should i remove the below options or keep them, my recovery options are text message and backup email.

Text code to phone (isnt this bad if my number got spoofed?)

Google Prompts to both mobile devices

 

 

  On 11/03/2023 at 14:12, SnoopZ said:

Should i remove the below options or keep them, my recovery options are text message and backup email.

Text code to phone (isnt this bad if my number got spoofed?)

Google Prompts to both mobile devices

Expand  

The odds of your phone being spoofed is slim, but it's also the weakest link. Personally Once I enable an authenticator, and backup all the QR codes  (in case I have to restore my athenticator on a different phone) Then I disable sms

I also print off a list of backup codes, but to my surprise those codes are pretty worthless. Yes they will act as an authetnicator code, but then Google also says they sent you a verification code to an email address you are trying to get into ..WTF Google.

I also recommend adding the authenicator to all your devices, phones and tablets.

  On 11/03/2023 at 19:02, Warwagon said:

The odds of your phone being spoofed is slim, but it's also the weakest link. Personally Once I enable an authenticator, and backup all the QR codes  (in case I have to restore my athenticator on a different phone) Then I disable sms

I also print off a list of backup codes, but to my surprise those codes are pretty worthless. Yes they will act as an authetnicator code, but then Google also says they sent you a verification code to an email address you are trying to get into ..WTF Google.

I also recommend adding the authenicator to all your devices, phones and tablets.

Expand  

I've mirrored ms authenticator to my 2 mobile devices can't stand Google authenticator with no biometric login, I've got recovery emails setup too so I will disable SMS.

What about device prompt login, that kind of makes everything else pointless doesn't it?

  On 11/03/2023 at 19:15, SnoopZ said:

I've mirrored ms authenticator to my 2 mobile devices can't stand Google authenticator with no biometric login, I've got recovery emails setup too so I will disable SMS.

What about device prompt login, that kind of makes everything else pointless doesn't it?

Expand  

It does and it doesn't. I was recently helping someone who had their account compromised and it was kind of a cat and mouse game to get control of it again. In the process what I realized, is it's very easy to accidentally click allow login when that prompt appears for someone else to log in. I much prefer the much more deliberate authenticator code.

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Posts

    • It's become a central place at my workplace. I use it for meetings, general chatting between employees, and the teams for storing of files to share between people at work. 
    • It's a Dell color laser printer. Back when Microsoft kept having these security flaws with the print spooler and recommending you disable it I just got in the habit of it, and I use it so rarely now I just leave it disabled in case another flaw pops up.
    • KDE makes progress toward full Wayland session restore in Plasma 6.5 by David Uzondu In the latest issue of This Week in Plasma, the development team, as usual, brings news of ongoing work for the desktop environment. While KDE continues to polish the recently released Plasma 6.4, work has already taken off on the next major version of Plasma, 6.5. A significant step forward is being made on Wayland session restoration; the xx-session-management-v1 restore protocol has been implemented in Qt 6.10, which means KDE applications and Plasma itself can soon start using it to finally bring proper session restore to Wayland. For more immediate user-facing changes in Plasma 6.5, the Welcome Center application now teaches you about the many available keyboard shortcuts, as well as "what the heck the 'Meta' key is." For those who frequently work remotely, Plasma's built-in RDP server now supports syncing clipboard text between the client and server. The clipboard also received another useful feature, letting you copy the QR code for an item, not just view it. The team is also addressing smaller usability issues across the desktop, including fixes that will land in point releases for Plasma 6.4. Spectacle, for example, will no longer show a ghostly semi-transparent version of its menus in screenshots. The New! badge, which was introduced in Plasma 6.4 is now easier to read with better colors. Other notable UI improvements include: A new button on the "missed notifications" pop-up that lets you view what you actually missed. The Networks widget is now much better at telling you what it is doing, like when it is "looking for wireless networks". Inertial scrolling with touchpads is now active in all QtQuick-based KDE software. As always, the KDE team spent the week squashing bugs across various versions of Plasma and related software. Plasma 6.4.1, which went live this Tuesday, addressed several crashes in the desktop portal implementations and patched the open/save dialog, where apps could insert extra UI elements in the wrong places. It also resolved a recent performance regression affecting some games and fixed a strange issue with drawing tablets where the pointer could disappear when two were connected in different modes. 6.4.1 tackled a particularly odd hardware-specific problem with Samsung Odyssey G5 monitors endlessly turning on and off because of a faulty DDC implementation. KDE responded by blacklisting the device. In addition to that, the update fixed an accessibility regression in Discover, corrected an issue where deleting a favorited app left behind a ghost item you couldn't un-favorite, and restored the Window List widget's ability to minimize windows. As for fixes planned for 6.4.2, here's the full list as outlined by the Plasma team: Fixed a case where System Settings' Flatpak App Permissions page could cause the whole app to crash. Fixed an issue that could sometimes cause Plasma to go back to sleep again right after waking up, when the "Sleep then hibernate" setting is in use. The appearance of text labels in Folder View pop-ups is once again correct. You're no longer erroneously prompted to authenticate for a Wireguard VPN whose credentials are already stored in KWallet, and the wallet is set up to automatically open at login. Fixed an issue in the KDE desktop portal's screenshot implementation that prevented the delay setting from taking effect. Missing app backends listed in Discover's Settings page once again show the correct names. The brightness level shown on System Settings' Display & Monitor page now matches the one shown in Plasma. Fixed an issue that caused the panel to have too much space in it until restarting Plasma if you stop displaying the date on a horizontally-laid-out Digital Clock widget. The older Plasma 6.3.6 fixed video stuttering on variable-refresh-rate screens and patched the Weather Report widget after Environment Canada changed its data format. You can check out the full update on the official KDE Blog.
    • I'm happy with my setup. I have a raid 1 two drive Synology setup that I backup with Time Machine to every so often. What is your setup at home? 
    • Enterprise support (ex. Premier Support) is a bit different cup of coffee. I am not saying it is great, but they have SLAs and I have received solution within hours and even patches within 3 days.
  • Recent Achievements

    • One Year In
      TsunadeMama earned a badge
      One Year In
    • Week One Done
      shaheen earned a badge
      Week One Done
    • Dedicated
      Cole Multipass earned a badge
      Dedicated
    • Week One Done
      Alexander 001 earned a badge
      Week One Done
    • Week One Done
      icecreamconesleeves earned a badge
      Week One Done
  • Popular Contributors

    1. 1
      +primortal
      569
    2. 2
      ATLien_0
      187
    3. 3
      +FloatingFatMan
      184
    4. 4
      Skyfrog
      112
    5. 5
      Som
      108
  • Tell a friend

    Love Neowin? Tell a friend!