[meta] Two Factor #2227
Comments
|
let's do it -- get your yubikeys ready! |
|
Enabled!
|
|
And my Axe |
|
You guys ought to add 2-FA, but if you do not want to, let us know and we'll remove write access to go-ipfs for the time being. |
|
any reason this is limited to go-ipfs? I suggest enforcing this for write access for all repos on ipfs |
|
I won't do it. I won't give any mobile telephone number to GitHub and won't depend anything too complicated or risking locking me out. My cookies are killed every day and I want to be able to log in fast. Please remove my commit access. |
|
I don't really trust those devices to keep my keys for me. I want to be able to keep a backup them somewhere safe at home, and these devices are write only, designed to prevent copying of the keys. I thought a lot about it this morning and found I could use TOTP. There is a command line program that provides this functionality, and I can store the password, protected by a GPG, and backup it to my liking. |
|
|
|
@lgierth cmon man! you have a yubikey now! |
|
Got it set up now! The setup instructions with Android app and all that where a bit discouraging (no Play Store on my phone) but with the SMS path is was simple, yay. |
|
I'm not at all convinced all these secondary routes are much safer than my password was, and this changes nothing about SSH access, but hey, this seems like a popular thing.. |
|
Who is in charge of ipfsbot? |
I'm going to start enforcing that people with direct write access to go-ipfs have two factor auth enabled. The following people have write access currently, but have two factor disabled:
The text was updated successfully, but these errors were encountered: