RE: [core libraries] Re: intent to enable 2fa requirement for github.com/haskell org

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

RE: [core libraries] Re: intent to enable 2fa requirement for github.com/haskell org

Alexandre Rodrigues Baldé

This is a sensible measure, but I doubt people that contribute to GHC via GitHub (even if just for read access) are on this maling list.

 

Perhaps an issue can be created to notify people of this, rather than let them run into errors and wonder what they did wrong.

 


De: ghc-devs <[hidden email]> em nome de chessai . <[hidden email]>
Enviado: Wednesday, March 18, 2020 9:28:51 PM
Para: Carter Schonwald <[hidden email]>
Cc: David Feuer <[hidden email]>; Haskell Libraries <[hidden email]>; ghc-devs <[hidden email]>; [hidden email] <[hidden email]>
Assunto: Re: [core libraries] Re: intent to enable 2fa requirement for github.com/haskell org
 
I agree with Carter here, 2FA is very accessible and if someone runs into a problem we can just tell them they need 2FA. It wouldn't be much more than a 10 minute disruption. Perhaps we could send out notice that it will take into effect at a certain point, maybe giving people a week or two. But we should really have this be mandatory.

On Wed, Mar 18, 2020, 1:09 PM Carter Schonwald <[hidden email]> wrote:
true, otoh, 2fa in various usable forms has been widely available for years, and we can reonboard people pretty easily. Its critical haskell infra and to the best of my knowledge, current 2fa tooling is pretty accessible to everyone globally. If someone has specific issues we can address them as they arise! 

On Wed, Mar 18, 2020 at 3:45 PM David Feuer <[hidden email]> wrote:
That's not a lot of lead time.

On Wed, Mar 18, 2020, 2:47 PM Carter Schonwald <[hidden email]> wrote:
hey everyone, because so much important stuff for the community, it makes sense to add 2fa required for the org, are there any good reasons to either wait to do this, or not do it? Feedback welcome! 

(if theres no objections i'll do it friday or this weekend, so theres some lead time for anyone who's not setup for that yet)

Best wishes and great health to all 
-carter
_______________________________________________
Libraries mailing list
[hidden email]
http://mail.haskell.org/cgi-bin/mailman/listinfo/libraries

--
[hidden email].
https://groups.google.com/d/msgid/haskell-core-libraries/CAHYVw0xA-Fzh1G-YUxWtV1HgOg%3D5o4jwYKNOipU-7dpYrYmA-g%40mail.gmail.com.

_______________________________________________
Libraries mailing list
[hidden email]
http://mail.haskell.org/cgi-bin/mailman/listinfo/libraries
Reply | Threaded
Open this post in threaded view
|

Re: [core libraries] Re: intent to enable 2fa requirement for github.com/haskell org

Oleg Grenrus

For read access you don't need 2FA (= be in the GitHub organization). Can you clarify what could go wrong?

- Oleg

On 18.3.2020 23.38, Alexandre Rodrigues Baldé wrote:

This is a sensible measure, but I doubt people that contribute to GHC via GitHub (even if just for read access) are on this maling list.

 

Perhaps an issue can be created to notify people of this, rather than let them run into errors and wonder what they did wrong.

 


De: ghc-devs [hidden email] em nome de chessai . [hidden email]
Enviado: Wednesday, March 18, 2020 9:28:51 PM
Para: Carter Schonwald [hidden email]
Cc: David Feuer [hidden email]; Haskell Libraries [hidden email]; ghc-devs [hidden email]; [hidden email] [hidden email]
Assunto: Re: [core libraries] Re: intent to enable 2fa requirement for github.com/haskell org
 
I agree with Carter here, 2FA is very accessible and if someone runs into a problem we can just tell them they need 2FA. It wouldn't be much more than a 10 minute disruption. Perhaps we could send out notice that it will take into effect at a certain point, maybe giving people a week or two. But we should really have this be mandatory.

On Wed, Mar 18, 2020, 1:09 PM Carter Schonwald <[hidden email]> wrote:
true, otoh, 2fa in various usable forms has been widely available for years, and we can reonboard people pretty easily. Its critical haskell infra and to the best of my knowledge, current 2fa tooling is pretty accessible to everyone globally. If someone has specific issues we can address them as they arise! 

On Wed, Mar 18, 2020 at 3:45 PM David Feuer <[hidden email]> wrote:
That's not a lot of lead time.

On Wed, Mar 18, 2020, 2:47 PM Carter Schonwald <[hidden email]> wrote:
hey everyone, because so much important stuff for the community, it makes sense to add 2fa required for the org, are there any good reasons to either wait to do this, or not do it? Feedback welcome! 

(if theres no objections i'll do it friday or this weekend, so theres some lead time for anyone who's not setup for that yet)

Best wishes and great health to all 
-carter
_______________________________________________
Libraries mailing list
[hidden email]
http://mail.haskell.org/cgi-bin/mailman/listinfo/libraries
--
You received this message because you are subscribed to the Google Groups "haskell-core-libraries" group.
from it, send an email to [hidden email].
href="https://groups.google.com/d/msgid/haskell-core-libraries/CAHYVw0xA-Fzh1G-YUxWtV1HgOg%3D5o4jwYKNOipU-7dpYrYmA-g%40mail.gmail.com?utm_medium=email&utm_source=footer" target="_blank" rel="nofollow" moz-do-not-send="true" link="external"> https://groups.google.com/d/msgid/haskell-core-libraries/CAHYVw0xA-Fzh1G-YUxWtV1HgOg%3D5o4jwYKNOipU-7dpYrYmA-g%40mail.gmail.com.

_______________________________________________
Libraries mailing list
[hidden email]
http://mail.haskell.org/cgi-bin/mailman/listinfo/libraries

_______________________________________________
Libraries mailing list
[hidden email]
http://mail.haskell.org/cgi-bin/mailman/listinfo/libraries