GitHub Organisation Security
#1
I noticed on the GitHub organisation page that I was the only member of the "Owners" team with two-factor authentication enabled.

I think that to improve security of the organisation and hopefully prevent any sort of hacking/defacement we should make all owners enable 2FA.

If not enforcing this, could you please at least consider enabling 2FA on your own account?
Reply
Thanks given by:
#2
Any response?
Reply
Thanks given by:
#3
What is it? As far as I understand 2FA is basicly that you need two passwords to log in. Is that correct?
Reply
Thanks given by:
#4
It means that you have to have a secondary authentication code to log in, yes.

Basically that means that either they can text you or you can install an app on your phone that generates codes on demand.

It means that an attacker would not just have to know your password, but also to have control of your phone (or tablet, etc) to get the code.
Reply
Thanks given by:
#5
Okay, but what if my phone breaks? Can't I log back in then?
Reply
Thanks given by:
#6
I was about to ask.
Reply
Thanks given by:
#7
Yes, you can log back in because you can generate backup codes and keep them safe, and if your phone breaks you can use one of them.
Reply
Thanks given by:




Users browsing this thread: 5 Guest(s)