Reddit is finally offering two-factor authentication to all users. The content aggregator/social platform has been testing 2FA for a while, but it has finally flicked the switch. Which means Reddit users have an extra layer of security beyond the standard email/password combination.
For the uninitiated, two-factor authentication is a double-lock for your account. So, you enter your password as usual, but then need a secondary code to gain access. Thus, two-factor authentication (2FA) stops hackers from accessing your account by simply entering your password.
Reddit Enables 2FA for All
A lot of websites now offer 2FA, and Reddit is the latest to offer it. After admitting that it has been of the most-requested features from users, Reddit has been slowly rolling it out to beta testers, moderators, and third-party app developers. And now it's available to everyone else.
Reddit has made its two-factor authentication optional, so you'll need to enable it to protect your account. To do this, just log into your Reddit account on desktop, click on preferences, and then select the "password/email" tab. From there just follow the on-screen instructions.
Once you have enabled 2FA on Reddit you'll be prompted to enter a six-digit verification code generated on your phone when you log in. This works on desktop, mobile, and third-party apps, but does require Google Authenticator, Authy, or another TOTP-supporting authenticator app.
You can also generate backup codes which you should print off and store in a secure location. These will enable you to access your Reddit account even if you lose your mobile device or cannot use your authenticator app for some reason. Which could prove invaluable in the future.
Two-Factor Annoyances
Two-factor authentication is rather annoying, especially for those who log in and out of various accounts through the day. However, 2FA is really the first safety net beyond the simple email/password combination that really isn't secure at all these days. So it's worth the pain.
Do you use two-factor authentication across various websites? Will you be using it on Reddit? Do you think it's a solid solution for protecting your accounts? Or should websites be working on even stronger measures for the future? Please let us know in the comments below!
Image Credit: Jean-Etienne Minh-Duy Poirrier via Flickr