[python-committers] Security: please enable 2-factor authentication on GitHub and your email

Victor Stinner victor.stinner at gmail.com
Mon Dec 11 07:55:53 EST 2017


2017-12-11 13:51 GMT+01:00 Antoine Pitrou <antoine at python.org>:
> Before recommending anything you/we should first give guidelines and
> best practices for backup etc.
>
> If you lose your 2FA device and don't have some kind of fallback your
> accounts may be screwed.  As usual, security can conflict with usability
> and the long-term availability of data.

Hum, in my first email I wrote:

"""
* Enable 2-factor auth on GitHub and Bitbucket using Yubikey
* Print two-step recovery codes on paper and keep it safe somewhere
"""

Using multiple tokens reduces the risk of losing access to your account.

Victor


More information about the python-committers mailing list