Two-factor authentication (2FA) is an identity and access management security method that requires two forms of identification to access resources and data. This is typically done via either an SMS code or an authenticator app such as Google Authenticator.

You can find instructions on how to enable 2FA on your account here.

⚠️

If you have any sort of admin-level permissions, such as the ability to manage roles or users, you must have 2FA enabled before these permissions will work

Avoiding & Managing Scams

Don’t click links from unknown senders or that look suspicious.

Don’t download programs or copy/paste code you don't recognize.

Don’t give your password to anyone!

Never share or screenshare your authorization token. Seriously. Don't do it.

Don’t scan any QR codes from people you don’t know or those you can’t verify as legitimate.

Enable 2-Factor Authentication to keep your account as safe as possible. You can find instructions on how to enable 2FA on your account here.

Consider restricting who can DM with you. You can learn how to do this here.

Inform yourself of common scams and what to look out for.

🧠

Remember, Gitcoin will never send you a DM of any sort asking you to take action. You should refer to official channels, such as #announcements, for important notifications. If you are the victim of a scam attempt, please report it in the #scam-report channel. You can additionally refer to our kick/ban policy for tips on taking action yourself.

Locking Down Your Inbox

There are a couple steps you can take to update the security settings of your inbox, and restrict who is able to send you DM’s or how you receive them.

Gitcoin Server Privacy Settings

The first thing to check is your server privacy settings. You can get here by selecting the “Privacy Settings” option from the dropdown at the top of the server menu

From here, you may select whether you would like to allow other server members to send you DMs. We suggest closing your DMs, as any official communications will happen directly in the server.

If you do allow DMs, you should also have the “Message Requests” option enabled to provide yourself with an extra layer of protection. Any messages from people you may not know will be filtered out, and you will have the choice of accepting, ignoring, or reporting each unknown DM.

User Settings

The other place to check is the “Privacy & Safety” section of your user settings. Here you can update the settings for your account across all servers.

Mentions & Notifications

To help reduce overwhelm from our very active server, you can toggle your notifications to only receive notifications for relevant mentions (direct tags & tags for roles you have).

First, select the “Notification Settings” option from the dropdown at the top of the server menu.

Then, adjust your notification settings as desired

Discord General Safety Best Practices

Related to Contributors DB (1) (Working Documents)

Initiative

🏗️

DAO Tooling

Contributor(s)

GC Forum Gov. Post.

🗄️ Initiatives DB

link

Related to Action Items DB (Working document)

Due Date

Created date

What is this working document for? 

Use Case Explanation

Workspace

What is this working document for?

Workspace

Helpful Links

Staying Safe

Enable Two-factor Authentication

Avoiding & Managing Scams

Locking Down Your Inbox

Mentions & Notifications

Helpful Links

Enabling Two-factor Authentication

Blocking & Privacy Settings

Scams And What To Look Out For

🦶
Kick / Ban Policy

Staying Safe

Enable Two-factor Authentication

Two-factor authentication (2FA) is an identity and access management security method that requires two forms of identification to access resources and data. This is typically done via either an SMS code or an authenticator app such as Google Authenticator.

You can find instructions on how to enable 2FA on your account here.

⚠️

If you have any sort of admin-level permissions, such as the ability to manage roles or users, you must have 2FA enabled before these permissions will work

Avoiding & Managing Scams

Don’t click links from unknown senders or that look suspicious.

Don’t download programs or copy/paste code you don't recognize.

Don’t give your password to anyone!

Never share or screenshare your authorization token. Seriously. Don't do it.

Don’t scan any QR codes from people you don’t know or those you can’t verify as legitimate.

Enable 2-Factor Authentication to keep your account as safe as possible. You can find instructions on how to enable 2FA on your account here.

Consider restricting who can DM with you. You can learn how to do this here.

Inform yourself of common scams and what to look out for.

🧠

Locking Down Your Inbox

There are a couple steps you can take to update the security settings of your inbox, and restrict who is able to send you DM’s or how you receive them.

Gitcoin Server Privacy Settings

The first thing to check is your server privacy settings. You can get here by selecting the “Privacy Settings” option from the dropdown at the top of the server menu

From here, you may select whether you would like to allow other server members to send you DMs. We suggest closing your DMs, as any official communications will happen directly in the server.

If you do allow DMs, you should also have the “Message Requests” option enabled to provide yourself with an extra layer of protection. Any messages from people you may not know will be filtered out, and you will have the choice of accepting, ignoring, or reporting each unknown DM.

User Settings

The other place to check is the “Privacy & Safety” section of your user settings. Here you can update the settings for your account across all servers.

Mentions & Notifications

To help reduce overwhelm from our very active server, you can toggle your notifications to only receive notifications for relevant mentions (direct tags & tags for roles you have).

First, select the “Notification Settings” option from the dropdown at the top of the server menu.

Then, adjust your notification settings as desired