Requiring Launchpad 2FA from Ubuntu uploaders
Robie Basak
robie.basak at ubuntu.com
Tue Aug 14 13:31:05 UTC 2018
Launchpad 2FA is currently opt-in for everyone. However, it has been
mandatory for Canonical employees for a number of years now. Details are
documented here:
https://help.ubuntu.com/community/SSO/FAQs/2FA
TOTP and HOTP are supported, so this works with hardware authenticators
such as Yubikeys as well as smartphone apps like OTP Authenticator (from
F-Droid) and Google Authenticator (Play Store), etc.
We[1] think this is now easy enough and standard enough not to be a
burden, so we are inclined to implement this as a requirement for all
Ubuntu uploaders[2]. Any objections?
Robie
[1] "We" means the TB and the DMB
[2] By "Ubuntu uploaders" I mean anyone who can upload to the Ubuntu
archive, which I think means all members of ~ubuntu-uploaders whether
directly or indirectly.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/ubuntu-devel/attachments/20180814/a2bf75ac/attachment.sig>
More information about the ubuntu-devel
mailing list