Updated 26.2.14 Facebook has implemented two-step authentication, a system designed to protect user accounts from unauthorized access.
In fact it is a double check, with a second login password that is requested when you log in to Facebook from other computers other than the usual one.
The protection measure allows you to prevent access with Facebook login and password so, even in the case of Phishing and even if a friend knew the name and password to enter the account, such access would be prevented.
Every Facebook user now has the option to activate dual authentication to protect their account.
The new feature is called Access Approval and is nothing more than a second password that you can receive or generate on your mobile staff.
To activate the approval of the accesses go to Account -> Account Settings, click on Security on the left side, click on Approval of access and put the cross where it says " Ask me to enter a security code every time a computer or other unrecognized device tries to access my account . "
Then a window opens where you need to enter the numeric code received via SMS on your mobile phone.
during my activation I had to wait a few minutes before receiving the SMS and you don't have to close the window otherwise the code will no longer be valid.
If the wait is too long, after a few minutes, click on the Send the code again link.
Obviously the mobile number must have been specified in the Facebook account, in the contact information of your profile and in Mobile settings.
The number must then be confirmed by entering a code which is sent to the mobile phone.
The mobile phone number and Facebook account are from that moment connected and the account can also be accessed via this number.
There is no need to worry about the privacy of the number because it can be hidden from everyone in the privacy settings.
The numeric code will be entered every time you log in to Facebook from a computer or mobile phone other than your own and every time someone, using the correct username and password, tries to log in from unauthorized computers.
The code can be received via SMS or, better, generated with an application .
Facebook allows you to use the same app for Android and iPhone to generate the code to be entered in the double check.
I recommend using an app like Google Authenticator for iPhone, Android and Blackberry instead.
To associate Facebook with Google Authenticator, always from the Settings -> Security screen, press on Code generator and then on Configure alternative method .
Use Google Authenticator to add a new account and scan the barcode to make the association (or use the numeric code indicated by Facebook on the same screen).
From now on, when Facebook asks for double verification, the code will be found on Google Authenticator .
READ ALSO: Login and login Google and Gmail with two-step verification
In addition, it is advisable to create an application password, which will be temporary, if you intend to use Facebook outside the browser, from external programs such as chat clients or other PC or mobile programs.
In this way, this password will be valid only once and, after logging out, a new one must be generated.
Double protection is certainly a very powerful security setting.
Even assuming that my computer is full of viruses, keyloggers and even falling into any phishing or scam attempt, I can enter my Facebook account from my computer by writing my name and password but not the security code.
If my pc was controlled by someone, they would be able to find out my login password but could not enter anyway because they would not know the security code.
Facebook users can also receive alerts via SMS or Email whenever someone tries to access the account.
In the notification there will also be the option to change the password.
If you lose your phone, you will need to access Facebook from the authorized computer and have a new code sent.
The double check that is obtained with the approval of the accesses is a setting to be absolutely enabled, as is the secure connection in Facebook to HTTPS which I consider mandatory.
