Some sensitive actions can be done without additional verification (2fa gate or "pin")

Edit: This post was revamped to be more of a suggestion for toggleable features for 2FA similar to what the PIN used to have as features

With one of the newest updates to Roblox Safety the so called “Parent PIN” was removed from the website. This PIN was used for other reasons than just parenting a account tho.

My suggestion together with ideas of other people is to re-add a PIN feature but make it better than the “Parent PIN”.

The “Account PIN” (or whatever Roblox would want to call it) could be a extended feature of the PIN, while the old PIN was required for stuff like changing settings, a newer version of the PIN have its own page in settings with toggleable options on what kind of activities would require a PIN entry.


For example:

  • Toggleable: All setting changes require a PIN (like the “Parent PIN” had)
  • Toggleable: Giving group ownership to someone else requires a PIN (like the “Parent PIN” had)
  • Toggleable: All Robux exchanges (buying gamepasses, catalog items, etc.) require a PIN
  • Toggleable: Exchanging limiteds or selling them require a PIN
  • Toggleable: Creating / archiving games and catalog items require PIN

Less useful but nice to have stuff could be:

  • Toggleable: Require PIN to join games (could be so that no one would be able to impersonate you)
  • Toggleable: Adding / removing friends; blocking people require PIN
  • Toggleable: Adding / removing accounts from the “Switch Account” section

These things and other things could certainly be useful for MORE account safety, Roblox removing the PIN is a step backwards because I think everyone would love to have more account safety compared to less.

33 Likes

YES!! PLEASEEE we need it back…

1 Like

I agree, we need this feature and nobody in the removal thread agreed with this change. This is a chance to add a new feature that everyone will like.

If we put 2FA gates on all the features you reference, does that resolve your concern?

7 Likes

That would be even safer and better. But I’d love to see some personalization with the options being toggleable as not every user requires 2FA on every of these things.

7 Likes

People used the PIN as an layer of security if somebody logged into an account. If someone had a PIN, they likely had 2FA. If someone logged in already, chances are they would have the 2FA code and it’s a low chance it refreshes. (unless I’m understanding wrong and 2FA refreshes immediately upon use, my phone broke.) If I’m understanding right, this would not resolve the concern.

Also would we be able to customize if we had these gates? We want these to be optional, as not everybody would want to check authenticator and enter a pin every time to quick switch accounts.

3 Likes

I mean this can easily be fixed by Roblox by just making a cooldown. If you enter the account through 2FA it could require a 2 minute cooldown before you can use 2FA on anything else again.

If say someone logs into your account without permission and for some reason has the 2FA and uses it on the log-in. When they go to settings and try to change settings with the same 2FA code, Roblox could make it so that it would return a error saying something like “You’re using 2FA codes too fast” and make the person who logged into your account wait 2 minutes (which by then the 2FA code has already reset)

1 Like

As in my original PIN features post, some people will want to have to enter it every time. Some will want it on specific features, not only trading or switching accounts.

I think so. Cuz I already got attacked a few times, and PIN saved me.

Thanks for the comment but I am unsure if that logic is sound. A PIN is compromised once known. A 2FA gate would require you to be in control of the 2FA app of the user, each code is only used once. I think based on what you write here, a 2FA gate would serve you much better than a static account PIN.

6 Likes

If you don’t mind me asking. Why did Roblox even deleted PIN?

1 Like

Sadly the cookie stealing bypasses 2FA, so this is why the PIN is safer.
Unless the attacker gets hold of the actual user.
And or uses a keylogger, to get the PIN.
But if someone only uses a cookie stealer, they are less likely to have the PIN.

Here’s a reformatted version that emphasizes the importance of using a PIN in addition to 2FA, making it more engaging and suitable for an advertisement:


Did you know that relying solely on 2FA might not be enough to safeguard your account? Here’s why adding a PIN is the smarter choice:

:shield: Why a PIN?

  • Cookie stealers can bypass 2FA, putting your account at risk.
  • A PIN adds an extra layer of security, requiring attackers to obtain more than just your cookies.

:rotating_light: What about keyloggers?
While keyloggers or physical access to your device could compromise your PIN, these attacks are far less common than cookie theft.

:bulb: The bottom line:
A cookie stealer alone won’t help an attacker if they don’t have your PIN. Using both 2FA and a PIN makes your account significantly safer.

5 Likes

Yes, but it’s extra security. If they somehow get into the account. It would be useful if we could control the 2FA gate? I’d be fine with that.

My original suggestion relating to pins. + more

  • Require Unlocked PIN to trade?
  • Enter PIN every time to trade? (subquestion)
  • Require Unlocked PIN to use robux?
  • Enter PIN every time to use robux? (subquestion)
  • Unlock PIN to join experiences?
  • Enter PIN every time to join experiences? (subquestion)
  • How long is my PIN unlocked for?
  • Transferring group ownership requires you to enter PIN.
  • Switching accounts Requires pin to be unlocked.
  • A way to set how many attempts will Lock the PIN.

Etc, also remember that these will be options with 2FA too, it will be interchangeable if users want convenience.

This is what he meant, with a 2FA gate, they wouldn’t be able to access crucial features if they don’t know the 2FA code when logging in. It would be useful to have a gate and a pin though.

On the off-chance a pin is guessed, this can save lives, but yes this is slightly unrealistic. Still, extra security never hurts.

1 Like

For clarity, what we are discussing in the replies here is to prompt 2FA checks after login on sensitive actions and setting changes, not just pre-login which already exists. :slightly_smiling_face:

5 Likes

But 2FA is not that great after getting attacked once. They will just buy 40 Robux for verification, then contact support and say that they were attacked and attach receipt from Robux as a proof, they will unblock it, and they have access to your account. (Know this from own experience)
That’s why I’m a little scared now being attacked once again.
That PIN really helped.

“Parental PIN” (it’s in the name) was not a security feature and could be removed by the parent by emailing in to customer support for the entire lifetime of the feature.

I recommend focusing the discussion on what problems you have where you feel people can modify account properties too easily while compromised, rather than asking for a feature to return or other proposed solutions. This is the most constructive way to continue the conversation.

Also, Hooksmith, adding onto this, not everyone has a phone. PC./login authentication services are unreliable as-well. It would be nice to have an added layer of security on top of 2fa.

2 Likes

Never was shown it was a security feature, but people used it like security feature. Because when you get attacked, they at least dont know pin so won’t change everything. Just a bit.

2 Likes

We are aware of this. Many people have used it as a security feature and it has even saved someone long enough to keep 5m+ worth of limited. This (and my) suggestion suggests a better version of it primarily for security. It would be helpful if we could combine this with the 2FA gate, but I see why this is not neccecary. As I asked before, will it be customizable?

For example, will we be able to customize these aspects (by using 2FA first? Or will it be forced on us.?

I completely support this idea. I don’t like the removal of the PIN because it’s one less security layer on your account. I think it would be a great idea allowing users to have a more customized PIN and have it reintroduced as an individual feature, rather than connected or linked in any way with the Parental Controls.

I would see this pin act as more of an option that allows you to change settings to your account, or prevents you from doing it if you don’t enter the pin and not let it be removed by support, unless the email owner responds to a support ticket, to avoid people spamming someone’s email with tickets that remove the pin.

1 Like