Post AD7mdaxDOR78tYN7OC by brandon@fosstodon.org
 (DIR) More posts by brandon@fosstodon.org
 (DIR) Post #AD7mdaNlWEl37bmo8O by thorn@fosstodon.org
       2021-11-06T12:29:24Z
       
       0 likes, 0 repeats
       
       Hey @fosstodon, what does "unrecognized IP address" mean to you? I've been always using this instance over Tor, but today is the first time when I was locked out and was sent a security code to email to confirm it's me. I'm happy Fosstodon is Tor friendly (was until now, at least), but I'm certainly not happy about the idea of having to go through this every time. You're not turning into ... cough ... Facebook, are you 🤣
       
 (DIR) Post #AD7mdaxDOR78tYN7OC by brandon@fosstodon.org
       2021-11-06T12:47:58Z
       
       0 likes, 0 repeats
       
       @thorn @fosstodon According to the changelog at Mastodon:Add e-mail-based sign in challenge for users with disabled 2FA: If user tries signing in after:* Being inactive for a while* With a previously unknown IP* Without 2FA being enabledNot sure whether any of this can be a factor on their own but I imagine that this challenge would also be thrown when you log in with an IP that this instance of Mastodon has never seen for anyone before.
       
 (DIR) Post #AD7nwfV0ooVgRoq4qu by kev@fosstodon.org
       2021-11-06T13:02:28Z
       
       0 likes, 0 repeats
       
       @thorn @Ged as @brandon said, this was introduced in the latest Mastodon release. We're not tracking you, it's part of the source code to make Masto more secure.@fosstodon
       
 (DIR) Post #AD7o52wbXBxhTgjwPo by thorn@fosstodon.org
       2021-11-06T13:04:02Z
       
       0 likes, 0 repeats
       
       @kev @Ged @brandon @fosstodon So this is a global server preference, not something that an user can turn off in his account preferences?
       
 (DIR) Post #AD7oQpn57U5L3Nfudc by kev@fosstodon.org
       2021-11-06T13:08:00Z
       
       0 likes, 0 repeats
       
       @thorn correct.@Ged @brandon @fosstodon