crumbletiltskin21h ago
IFTAS

We're seeing a lot of account takeovers of old, unused accounts. If your account has elevated privileges (eg admin or moderator access) we strongly advise you enable multi-factor authentication.

Please boost for visibility.

#FediAdmin #FediMods #MastoAdmin

Jun 18 at 2:56pmWeb
Show threadFifo™1d ago
@iftas thanks for the heads up!
Show threadMarjorieR23h ago
@iftas surely setting up 2FA is good advice for everyone?
Show threadIFTAS22h ago
@marjolica absolutely! Our immediate concern is the possibility of entire servers being taken over, but everyone who can should enable multi-factor to protect their account.
Show threadalice 22h ago
@iftas upgrade to Mastodon 4.6 and you can start enforcing 2FA for specific roles (or everybody) on your server
Show threadSteve's Place21h ago
@wheresalice @iftas It requires ruby 3.3. Ubuntu 24.04 LTS supports 3.2 flavors. Unless you're already on Ubuntu 26.04 LTS, there is a problem with upgrading. The upgrade code from Ubuntu won't be available until August 26 of this year. Fresh installs are available, but to upgrade requires forcing it (-d) and accepting potential breakage. I won't be upgrading before then, as I tried, and have only succeeded in messing up npm, lol.
Show threadalice 11h ago
@steter @iftas oof, I'd forgotten the pains of installing newer ruby versions on older Ubuntu. That's why I started using Docker back in the day, but that's also not an easy switch here
Show threadSteve's Place11h ago
@wheresalice @iftas It isn't, and I've considered using Docker. The end of August is not that far off. I'll impatiently wait.
Show threadalice 10h ago
@steter @iftas good luck with the patience, that's not something I'm good at 😂