I don't like it; more security is unnecessary. It is annoying if an extra step to log-in. chess.com staff are required to have 2FA, but regular members don't and it shouldn't be required. I could use 2FA if I have to, but regular members shouldn't be forced to use it to log-in.
https://www.chess.com/forum/view/community/chess-com-2fa
I'm not saying that it should be forced, in saying that it would be a nice option to have.
I believe that Chess.com NEEDS a two-factor authorization thing in the security options.
It will help with protecting against hackers hacking other profiles.
I believe that all titled players should have it too, just so they don't lose their accounts.
I think it's a good idea, what do you think Chess.com?
While things always can change, @erik has posted in the past that won't be an option for regular accounts.
@erik is wrong. chess.com should implement two-factor authentication as an option (not a requirement) which individual users should be able to turn on for additional security. I would turn it on. I'm a little shocked that it isn't an option already. It's an option for competing sites.
That's perfectly fine - you would leave the option off, then.
What would be involved in 2-Factor? Yes, I see that it is not gong to be required, but if it is an option, what would the member be required to supply? I ask because I HATE - with a passion - the "I am not a bot" scrambled letters and numbers. That test NEVER works right for me. My submissions are often not accepted, and sometimes I, who am indeed a human being, cannot read those. There are things online I can't use at all because of this. PLEASE never use that!
The scrambled images you describe is called a "Completely Automated Public Turing test to tell Computers and Humans Apart" or CAPTCHA for short. That's not what @Wolf_Plays_Chess or I (or others) are asking for.
Instead, what we're asking for is one of these. Either:
1. The first time I log into chess.com from a new computer or phone, send me a text with a six-digit code. I will punch in the code. After that, remember me. OR
2. I have an "authenticator" app installed that shows a six-digit code, which changes every 30 seconds. The first time I log into chess.com from a new computer or phone, ask me what the code is at that moment. I will punch it in. After that, remember me.
This is called "two factor authentication" or 2fa.
chess.com would only do either of these things if I go in and turn on 2fa in my chess.com settings, on purpose.
Why would I turn it on? Because that makes it much harder for people to hack my account. Even if they know my password somehow, they won't be able to log in, because they don't have my phone.
Lots of other websites do this already.
OK! Thanks for the explanation! Yes, I 've used that 6-digit code method elsewhere and I like it.
I just joined and was looking for this option. This day and age, hacking passwords is an ongoing, bot activity and quite effective. 2-factor is necessary for any security. Without it, honestly, I find the website sketchy in that so many accounts could be compromised.
I believe that Chess.com NEEDS a two-factor authorization thing in the security options.
It will help with protecting against hackers hacking other profiles.
I believe that all titled players should have it too, just so they don't lose their accounts.
I think it's a good idea, what do you think Chess.com?