Below are some important considerations for all Mastodon users to be aware of.
To protect your account, it is important that you use good password hygiene. Below are some important guidelines to consider when selecting a password for your Mastodon account:
Do | Don't |
|
|
Below are a few recommended password managers to consider:
Security experts agree that in many scenarios password authentication is not enough to ensure the security of account access. Luckily Mastodon has built-in support for multiple types of second factor authentication or 2FA. These can be configured in your Account Settings by clicking on Two-factor Auth . From there you'll be able to configure either of the following 2FA types:
While not a requirement, 2FA is free for all users and is recommended for better protection of your account.
Another important consideration for all users is in regards to privacy of direct messages. Users should understand the nature of direct messages on the Mastodon platform and in the Fediverse as a whole.
Direct messages on Mastodon are not end to end encrypted or protected in any special way. In fact there is no difference internally between a direct message and any other post. The only distinction is that the “visibility” of the post is limited to only those tagged in it. This is important to understand for two reasons:
The admins of friendsofdesoto.social take security very seriously and make every effort to properly protect infrastructure and users of this instance. That said, we cannot be held liable for security risks assumed by use or misuse of this of this service. It is incumbent on users to take steps to ensure the security and privacy of their personal data.