[python-committers] Security: please enable 2-factor authentication on GitHub and your email

[Paul Moore]

On 12 December 2017 at 13:07, M.-A. Lemburg <mal at egenix.com> wrote:
> I'm with David on this one. 2FA is good for admin accounts, but
> doesn't add much protection for regular committers. Think of what
> you're trying to protect against: git checkins are all audited and
> can easily be undone.

Indeed. I'd rather have a password-protected account that I can
recover using my (2FA protected) email, than a second set of 2FA
credentials that I have to manage to avoid the risk of being 100%
locked out of github.

Paul