[core libraries] Re: intent to enable 2fa requirement for github.com/haskell org

Alexandre Rodrigues Baldé alexandreR_B at outlook.com
Wed Mar 18 21:38:31 UTC 2020


This is a sensible measure, but I doubt people that contribute to GHC via GitHub (even if just for read access) are on this maling list.

Perhaps an issue can be created to notify people of this, rather than let them run into errors and wonder what they did wrong.

________________________________
De: ghc-devs <ghc-devs-bounces at haskell.org> em nome de chessai . <chessai1996 at gmail.com>
Enviado: Wednesday, March 18, 2020 9:28:51 PM
Para: Carter Schonwald <carter.schonwald at gmail.com>
Cc: David Feuer <david.feuer at gmail.com>; Haskell Libraries <libraries at haskell.org>; ghc-devs <ghc-devs at haskell.org>; core-libraries-committee at haskell.org <core-libraries-committee at haskell.org>
Assunto: Re: [core libraries] Re: intent to enable 2fa requirement for github.com/haskell org

I agree with Carter here, 2FA is very accessible and if someone runs into a problem we can just tell them they need 2FA. It wouldn't be much more than a 10 minute disruption. Perhaps we could send out notice that it will take into effect at a certain point, maybe giving people a week or two. But we should really have this be mandatory.

On Wed, Mar 18, 2020, 1:09 PM Carter Schonwald <carter.schonwald at gmail.com<mailto:carter.schonwald at gmail.com>> wrote:
true, otoh, 2fa in various usable forms has been widely available for years, and we can reonboard people pretty easily. Its critical haskell infra and to the best of my knowledge, current 2fa tooling is pretty accessible to everyone globally. If someone has specific issues we can address them as they arise!

On Wed, Mar 18, 2020 at 3:45 PM David Feuer <david.feuer at gmail.com<mailto:david.feuer at gmail.com>> wrote:
That's not a lot of lead time.

On Wed, Mar 18, 2020, 2:47 PM Carter Schonwald <carter.schonwald at gmail.com<mailto:carter.schonwald at gmail.com>> wrote:
hey everyone, because so much important stuff for the community, it makes sense to add 2fa required for the org, are there any good reasons to either wait to do this, or not do it? Feedback welcome!

(if theres no objections i'll do it friday or this weekend, so theres some lead time for anyone who's not setup for that yet)

Best wishes and great health to all
-carter
_______________________________________________
Libraries mailing list
Libraries at haskell.org<mailto:Libraries at haskell.org>
http://mail.haskell.org/cgi-bin/mailman/listinfo/libraries

--
You received this message because you are subscribed to the Google Groups "haskell-core-libraries" group.
To unsubscribe from this group and stop receiving emails from it, send an email to haskell-core-libraries+unsubscribe at googlegroups.com<mailto:haskell-core-libraries+unsubscribe at googlegroups.com>.
To view this discussion on the web visit https://groups.google.com/d/msgid/haskell-core-libraries/CAHYVw0xA-Fzh1G-YUxWtV1HgOg%3D5o4jwYKNOipU-7dpYrYmA-g%40mail.gmail.com<https://groups.google.com/d/msgid/haskell-core-libraries/CAHYVw0xA-Fzh1G-YUxWtV1HgOg%3D5o4jwYKNOipU-7dpYrYmA-g%40mail.gmail.com?utm_medium=email&utm_source=footer>.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.haskell.org/pipermail/ghc-devs/attachments/20200318/e875a0b0/attachment.html>


More information about the ghc-devs mailing list