D Github contributors - enable 2 factor authentification

ketmar via Digitalmars-d digitalmars-d at puremagic.com
Thu Aug 11 04:48:32 PDT 2016


On Thursday, 11 August 2016 at 07:59:11 UTC, Walter Bright wrote:
> There's also nothing private in the dlang repository, but a 
> malicious person could just delete everything and it would be a 
> major problem for us to recover from that.

only PRs. would be a refreshing change and autoclearing of PR 
queue. besides, authors will just resubmit 'em.

there is no reason to mess with 2fa, i believe. the only thing 
someone can do is pushing some malicious commit, which will be 
found almost immediately by compromised dev (next git pull will 
raise an alarm with error).

yet in exchange for wery weak protection, one have to give his 
phone number to the 3rd party, and that 3rd party is known by 
security faults and overall low level of tech and security. if 
i'll be asked to give my phone number to such organisation (to 
*any* organisation, but well, this case even worther), i will 
deny the requiest immediately.


More information about the Digitalmars-d mailing list