[core libraries] Re: intent to enable 2fa requirement for github.com/haskell org

Simon Peyton Jones simonpj at microsoft.com
Thu Mar 19 08:57:26 UTC 2020


I have not been following this.  What is the consequence for a regular GHC developer, or someone contributing to GHC?

In any announcement please give a way to verify “am I affected?”

Thanks

Simon

From: haskell-core-libraries at googlegroups.com <haskell-core-libraries at googlegroups.com> On Behalf Of Carter Schonwald
Sent: 18 March 2020 23:53
To: Duncan Coutts <duncan at dcoutts.me.uk>
Cc: Haskell Libraries <libraries at haskell.org>; core-libraries-committee at haskell.org; ghc-devs <ghc-devs at haskell.org>
Subject: [core libraries] Re: intent to enable 2fa requirement for github.com/haskell org

Awesome!

After talking with several folks, feedback has been that best practices are to make sure the notice is a week before hand.

So what I’ll do is personally reach out to those who aren’t 2fa enabled in the Haskell gh org (and haven’t commented on this thread )and ask them to enable 2fa on their GitHub account. Perhaps I should attach a 2fa options explainer !

I’ll look at folks responses and if everyone active has made the switch over, I’ll look to do a transition next Monday or Tuesday.


Be well! (Nyc and many other places are pretty strange right now :/ )

-Carter

On Wed, Mar 18, 2020 at 7:42 PM Duncan Coutts <duncan at dcoutts.me.uk<mailto:duncan at dcoutts.me.uk>> wrote:
On Wed, 2020-03-18 at 19:05 -0400, Carter Schonwald wrote:
> No. You don’t.  You can use a yubi key and or a totp tool like google
> Authenticator or 1Password etc. no phones required

It took me a while, but I have successfully managed to turn 2FA back
into 1FA.

In case it helps anyone else, generate your 2FA response with

$ oathtool --totp -b $the-2fa-secret

Where $the-2fa-secret is the code github gives you after the recovery
codes (initially shown as a barcode, but they'll give you the actual
code if you click the link).

> On Wed, Mar 18, 2020 at 6:16 PM Duncan Coutts <duncan at dcoutts.me.uk<mailto:duncan at dcoutts.me.uk>> wrote:
> > On Wed, 2020-03-18 at 14:46 -0400, Carter Schonwald wrote:
> > > hey everyone, because so much important stuff for the community, it
> > > makes sense to add 2fa required for the org, are there any good
> > > reasons to either wait to do this, or not do it? Feedback welcome!
> >
> > I think I might get cut off.
> >
> > Is it not still the case that github's 2fa needs a program running on a
> > mobile phone, or an SMS-capable mobile phone? Is there any support for
> > normal tools running on a normal Linux machine?
> >
--
You received this message because you are subscribed to the Google Groups "haskell-core-libraries" group.
To unsubscribe from this group and stop receiving emails from it, send an email to haskell-core-libraries+unsubscribe at googlegroups.com<mailto:haskell-core-libraries+unsubscribe at googlegroups.com>.
To view this discussion on the web visit https://groups.google.com/d/msgid/haskell-core-libraries/CAHYVw0x5CTOmQDLp3%2B89muQ%2BvXgmcmgo%3DgCHs8kjBHOMb%3D5Ksw%40mail.gmail.com<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgroups.google.com%2Fd%2Fmsgid%2Fhaskell-core-libraries%2FCAHYVw0x5CTOmQDLp3%252B89muQ%252BvXgmcmgo%253DgCHs8kjBHOMb%253D5Ksw%2540mail.gmail.com%3Futm_medium%3Demail%26utm_source%3Dfooter&data=02%7C01%7Csimonpj%40microsoft.com%7C7f5dc75648ac4e8a4fe708d7cb977cae%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637201723806844496&sdata=CP9SSJCInfaF%2Fxhd8%2FdO5zOj1Wsr%2FVbd6J9F5%2BeqHS4%3D&reserved=0>.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.haskell.org/pipermail/ghc-devs/attachments/20200319/22e6642e/attachment-0001.html>


More information about the ghc-devs mailing list