Requiring Launchpad 2FA from Ubuntu uploaders
Simon Quigley
tsimonq2 at ubuntu.com
Tue Aug 14 18:35:00 UTC 2018
Hello,
On 08/14/2018 11:34 AM, Colin Watson wrote:
> How would this work, even conceptually? Some kind of extra challenge
> when doing SFTP uploads or git/bzr pushes to ask for 2FA (and some
> timeout arrangement so that it isn't hopelessly annoying)? What about
> FTP uploads?
In my opinion, SFTP should be the default for uploads to Ubuntu*, and we
should phase out FTP. My local /etc/dput.cf has been patched to do this
for a while now, and it works fine.
If this is done, we should be able to use PAM with google-authenticator.
Thoughts on going this route?
*If I recall correctly, Debian has already done this for uploads to
security-master.
--
Simon Quigley
tsimonq2 at ubuntu.com
tsimonq2 on freenode and OFTC
5C7A BEA2 0F86 3045 9CC8
C8B5 E27F 2CF8 458C 2FA4
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ubuntu.com/archives/ubuntu-devel/attachments/20180814/2f4cca21/attachment.sig>
More information about the ubuntu-devel
mailing list