Multifactor authentication

RTM is my trusted GTD system; it contains a lot of personal/confidential information. I would trust it even more if RTM would use/allow multifactor authentication (a combination of something "I know" -my password- and something "I have" -unique physical item-).
Examples are the way LastPass uses the YubiKey/Grid, or Google's 2-Step Verification.
https://lastpass.com/support_faqs.php#yubikey
http://googleblog.blogspot.com/2011/02/advanced-sign-in-security-for-your.html
Examples are the way LastPass uses the YubiKey/Grid, or Google's 2-Step Verification.
https://lastpass.com/support_faqs.php#yubikey
http://googleblog.blogspot.com/2011/02/advanced-sign-in-security-for-your.html

lucasvdhaven says:
Yes this would be awesome.
I vote for two factor authentication for RTM!
Thanks for reading.
Luuc
I vote for two factor authentication for RTM!
Thanks for reading.
Luuc

(closed account) says:
agreed YubiKey, Verisign VIP (the one PayPal uses), or Google Authenticator would be cool... but I'm having a hard time imagining putting anything into RTM that would need anything close to that level of security... not voting either way on this one yet

michiel.schok says:
Or we could use the new kid on the block using QR codes: TIQR. completely Open Source.
https://tiqr.org
https://tiqr.org

(closed account) says:
+1 for 2 factor authentication possibly with Google Authenticator or SMS-texts.


keinech.tername says:
still no 2-step-verification? Come on!

nedk says:
Please add two-factor authentication.


(closed account) says:
Disappointed that there is still no multi factor authentication even in the year 2016! Using just a password is poor security nowadays. Not worth to loose all the tasks over a hack.

tomhall100 says:
+1 for Google Auth

(closed account) says:
+1

chris9140 says:
I vote for this. (RTM is the perfect app by the way - way ahead of the others)

We really need this now. Task list data is inherently personally sensitive and with the combination of greater computing power AND the greatly increased levels of hacking activity it's gone from being desirable to essential. ToodleDo has offered this for years as do most of the major Cloud Services e.g. DropBox, Google, Microsoft, PayPal, Amazon etc

(closed account) says:
+1


pauk.healey says:
+1 for Google Authenticator and/or YubiKey.

carlosleitao says:
Hi!
Respectfully, I do not understand why this subject is being discussed yet.
We all know how easy is to crack any service.
The only option to give us some safety (some!) is 2FA.
Please, Bob, prioritize this job for the next few months.
Or we are waiting for an attack to take action?
Respectfully, I do not understand why this subject is being discussed yet.
We all know how easy is to crack any service.
The only option to give us some safety (some!) is 2FA.
Please, Bob, prioritize this job for the next few months.
Or we are waiting for an attack to take action?

carlosleitao says:
Bob,
You there?
You there?

ikbenreinder says:
Would be awesome if RTM supported U2F. A fido U2F hardware key with Google Authenticator as a fallback would be the best implementation, in my opinion. The app as a fallback for browsers (such as Firefox) that don't have U2F built in (yet). I use a hardware U2F key from Yubico with my Gitlab account. It's really easy to use.

wwoolrich says:
I'm with ikbenreinder. The Yubico U2F key is super easy. Please implement this.



(closed account) says:
This feature for such a tool is essential. And it was requested 7 years ago.

(closed account) says:
we need this





99rats says:
Please, please add this...

(closed account) says:
+1





+1
One use case (besides general higher security): I am often working on site at different customers. Many of them do SSL termination at their proxy servers in order to be able to scan for malicious Internet traffic. Therefore they would be able to log user credentials and afterwards use these credentials to login to RTM. With 2FA enabled they still would not be able to login as they do not have the second factor.
One use case (besides general higher security): I am often working on site at different customers. Many of them do SSL termination at their proxy servers in order to be able to scan for malicious Internet traffic. Therefore they would be able to log user credentials and afterwards use these credentials to login to RTM. With 2FA enabled they still would not be able to login as they do not have the second factor.

iamjeffcohen says:
Yikes


lawwrence says:
Another vote for MFA. This feature is standard by now.



zehment says:
2 factor would be absolutly great!

emalf13 says:
2FA is a MUST these day. Please can you implement.

testds says:
Please add 2FA. Please add 2FA urgently.
We're into 2021, it's not acceptable for a service like Remember The Milk, to not to have this type of standard protection.
We're into 2021, it's not acceptable for a service like Remember The Milk, to not to have this type of standard protection.
Log in
to post a reply.