So, I sat down to write today’s blog entry when I noticed a message to me from WordPress informing me that, in order to make my blog more secure, I needed to subscribe to “two step authentication”. It made sense. If my password was ever compromised, I could retain control of my blog via the unique authentication code on my iPhone.
Yes, it made perfect sense BUT, in the back of my mind, I had a bad feeling about it. Ultimately, however, I decided to go ahead because the process seemed easy enough.
1. I entered my country and cell phone number.
2. I downloaded the Google Authenticator app.
3. I used the Google Authenticator app to scan the special barcode wordpress provided.
4. WordPress prompted me for the authentication code that the app provided. I entered it. So far so good…
5. The app provided me with a list of ten unique back-up codes that I was instructed to print.
6. I hit print.
7. I went to the printer – and was horrified to discover that nothing had actually printed.
8. I rushed back to my account where I was presented with the following:
9. I consulted the Google Authenticator app on my cell phone and input the code provided. Wordpress informed me it was invalid.
10. I tried another one of the codes provided by the app. Again, wordpress informed me it was invalid.
11. I hit the “Generate Back-up Codes” button to generate a new set of back-up codes. Nothing.
12. Panicked, I tried to disable the two-step authentication and was prompted for a back-up code. I didn’t have.
13. I’m screwed.
So, that’s that. Apparently, the next time my computer resets, I will no longer be able to log in with my password alone. An authentication code will be required. An authentication code, I feel the need to point out, that I don’t have and I have no way of recovering.
All this to say that if I mysteriously stop blogging, don’t fear the worst. It’s more than likely that wordpress’s new and improved security system has locked me out of my own account.