this post was submitted on 21 Apr 2024
53 points (83.5% liked)

Linux

48186 readers
1699 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 5 years ago
MODERATORS
nooter692@lemmy.ml
AgreeableLandscape@lemmy.ml
MarcellusDrum@lemmy.ml
cypherpunks@lemmy.ml
cyclohexane@lemmy.ml
d3Xt3r@lemmy.nz
53
How to make it so frequently used sites don't constantly require 2FA? [SOLVED] (lemmy.ml)
submitted 6 months ago* (last edited 6 months ago) by yo_scottie_oh@lemmy.ml to c/linux@lemmy.ml
33 comments fedilink hide all child comments
 

EDIT: After reading all the responses, I’ve decided to allow cookies to persist after they close the browser, which I expect will make it so that 2FA doesn’t kick in as often, at least not on their most frequently used web sites. I may also look into privacy oriented browser extensions that might offer some protection, such as Privacy Badger. Thanks, all!

OP: I know two factor authentication is considered more secure than just passwords, but here’s the deal: One of my family members uses Linux Mint on their laptop (at my recommendation and yes, they are aware that it’s not a Mac), and while they’ve mostly adapted to the different workflows (coming from a macbook), one of their biggest pain points is that web sites are constantly challenging them because they don’t recognize their machine. It’s frustrating to them because they used to just allow all cookies in Safari, whereas I’ve configured Firefox on their Linux laptop not to keep any cookies after the browser is closed. I know this isn’t a Linux/Firefox issue, but I think they might not see it that way and I worry they’ll get frustrated to the point that they’ll go out and splurge on a new macbook air when they already have a perfectly functional laptop with functional OS.

Right now I’m thinking of adding their most frequently used web sites as exceptions in Firefox settings so at least those cookies would persist after closing the browser, making them easier to log into. Or maybe I’ll just allow all cookies indefinitely, although I’d rather not just throw in the towel on Big Surveillance. Is there another way to walk that line between convenience and security that I’m not thinking of? Should I just remove my tin foil hat and allow all cookies indefinitely?

Thanks in advance for your advice.

you are viewing a single comment's thread
view the rest of the comments
[–] Th4tGuyII@kbin.social 30 points 6 months ago (1 children)

I'm a bit late to the party, but I would be inclined to agree with the majority here. Your choice to have their cookies deleted on browser close is adding more friction to an already quite high friction process - you managed to get them to switch over, you don't want to undo all that over cookies of all things.

You have to remember, it is their machine at the end of the day, and while you might be able to put up with having to redo 2FA loads due to cookie deletion, they're clearly not... And if that's going to be the dealbreaker, you're far better off forgetting cookie deletion for now and focusing on more passive privacy options like blocking 3rd party cookies, trackers, and ADs.

[–] yo_scottie_oh@lemmy.ml 4 points 6 months ago (1 children)

Yup, I agree - thanks for chiming in.

[–] ReversalHatchery@beehaw.org 3 points 6 months ago

Don't forget to let them know that Linux is not by default this hardcore with cookies.