I just received an email from Github that they are now ofically begin to require users who contribute code need to have 2FA enabled.

Why isn’t password + email already sufficient? Why do I need to use a third FA to satisfy their requirements? Is it reasonable to feel stumped or angry about it?

Would like to hear your thoughts about this.

  • macniel@feddit.deOP
    link
    fedilink
    arrow-up
    0
    ·
    1 year ago

    I have some TOTPs for other accounts but used googles authenticator app for that as it wasn’t important to me.

    Thank you very much for the Aegis recommendation, the transfer was easy and quick as well.

    And yeah using a desktop app would remove the “What I have” factor :)