intent to enable 2fa requirement for github.com/haskell org - ghc-devs - Haskell.org

newer
Re: intent to enable 2fa...

intent to enable 2fa requirement for github.com/haskell org

older
Specializing functions with...

Carter Schonwald

18 Mar 2020 18 Mar '20

2:46 p.m.

hey everyone, because so much important stuff for the community, it makes sense to add 2fa required for the org, are there any good reasons to either wait to do this, or not do it? Feedback welcome! (if theres no objections i'll do it friday or this weekend, so theres some lead time for anyone who's not setup for that yet) Best wishes and great health to all -carter

Attachments:

attachment.html (text/html — 467 bytes)

Reply

Sign in to reply online Use email software

Show replies by date

Ben Gamari

18 Mar 18 Mar

3:05 p.m.

I agree that this would be a good idea. Cheers, — Ben On March 18, 2020 2:46:47 PM EDT, Carter Schonwald wrote:

hey everyone, because so much important stuff for the community, it makes sense to add 2fa required for the org, are there any good reasons to either wait to do this, or not do it? Feedback welcome!

(if theres no objections i'll do it friday or this weekend, so theres some lead time for anyone who's not setup for that yet)

Best wishes and great health to all -carter

-- Sent from my Android device with K-9 Mail. Please excuse my brevity.

Reply

Sign in to reply online Use email software

David Feuer

3:45 p.m.

That's not a lot of lead time. On Wed, Mar 18, 2020, 2:47 PM Carter Schonwald wrote:

hey everyone, because so much important stuff for the community, it makes sense to add 2fa required for the org, are there any good reasons to either wait to do this, or not do it? Feedback welcome!

(if theres no objections i'll do it friday or this weekend, so theres some lead time for anyone who's not setup for that yet)

Best wishes and great health to all -carter _______________________________________________ Libraries mailing list Libraries@haskell.org http://mail.haskell.org/cgi-bin/mailman/listinfo/libraries

Reply

Sign in to reply online Use email software

Carter Schonwald

4:09 p.m.

true, otoh, 2fa in various usable forms has been widely available for years, and we can reonboard people pretty easily. Its critical haskell infra and to the best of my knowledge, current 2fa tooling is pretty accessible to everyone globally. If someone has specific issues we can address them as they arise! On Wed, Mar 18, 2020 at 3:45 PM David Feuer wrote:

That's not a lot of lead time.

On Wed, Mar 18, 2020, 2:47 PM Carter Schonwald wrote:

...
hey everyone, because so much important stuff for the community, it makes sense to add 2fa required for the org, are there any good reasons to either wait to do this, or not do it? Feedback welcome!

(if theres no objections i'll do it friday or this weekend, so theres some lead time for anyone who's not setup for that yet)

Best wishes and great health to all -carter _______________________________________________ Libraries mailing list Libraries@haskell.org http://mail.haskell.org/cgi-bin/mailman/listinfo/libraries

Reply

Sign in to reply online Use email software

chessai .

5:28 p.m.

New subject: [core libraries] Re: intent to enable 2fa requirement for github.com/haskell org

I agree with Carter here, 2FA is very accessible and if someone runs into a problem we can just tell them they need 2FA. It wouldn't be much more than a 10 minute disruption. Perhaps we could send out notice that it will take into effect at a certain point, maybe giving people a week or two. But we should really have this be mandatory. On Wed, Mar 18, 2020, 1:09 PM Carter Schonwald wrote:

true, otoh, 2fa in various usable forms has been widely available for years, and we can reonboard people pretty easily. Its critical haskell infra and to the best of my knowledge, current 2fa tooling is pretty accessible to everyone globally. If someone has specific issues we can address them as they arise!

On Wed, Mar 18, 2020 at 3:45 PM David Feuer wrote:

...
That's not a lot of lead time.

On Wed, Mar 18, 2020, 2:47 PM Carter Schonwald < carter.schonwald@gmail.com> wrote:

...
hey everyone, because so much important stuff for the community, it makes sense to add 2fa required for the org, are there any good reasons to either wait to do this, or not do it? Feedback welcome!

(if theres no objections i'll do it friday or this weekend, so theres some lead time for anyone who's not setup for that yet)

Best wishes and great health to all -carter _______________________________________________ Libraries mailing list Libraries@haskell.org http://mail.haskell.org/cgi-bin/mailman/listinfo/libraries

-- You received this message because you are subscribed to the Google Groups "haskell-core-libraries" group. To unsubscribe from this group and stop receiving emails from it, send an email to haskell-core-libraries+unsubscribe@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/haskell-core-libraries/CAHYVw0xA-Fzh1G-YUx... https://groups.google.com/d/msgid/haskell-core-libraries/CAHYVw0xA-Fzh1G-YUxWtV1HgOg%3D5o4jwYKNOipU-7dpYrYmA-g%40mail.gmail.com?utm_medium=email&utm_source=footer .

Reply

Sign in to reply online Use email software

Alexandre Rodrigues Baldé

5:38 p.m.

New subject: [core libraries] Re: intent to enable 2fa requirement for github.com/haskell org

This is a sensible measure, but I doubt people that contribute to GHC via GitHub (even if just for read access) are on this maling list. Perhaps an issue can be created to notify people of this, rather than let them run into errors and wonder what they did wrong. ________________________________ De: ghc-devs em nome de chessai . Enviado: Wednesday, March 18, 2020 9:28:51 PM Para: Carter Schonwald Cc: David Feuer ; Haskell Libraries ; ghc-devs ; core-libraries-committee@haskell.org Assunto: Re: [core libraries] Re: intent to enable 2fa requirement for github.com/haskell org I agree with Carter here, 2FA is very accessible and if someone runs into a problem we can just tell them they need 2FA. It wouldn't be much more than a 10 minute disruption. Perhaps we could send out notice that it will take into effect at a certain point, maybe giving people a week or two. But we should really have this be mandatory. On Wed, Mar 18, 2020, 1:09 PM Carter Schonwald mailto:carter.schonwald@gmail.com> wrote: true, otoh, 2fa in various usable forms has been widely available for years, and we can reonboard people pretty easily. Its critical haskell infra and to the best of my knowledge, current 2fa tooling is pretty accessible to everyone globally. If someone has specific issues we can address them as they arise! On Wed, Mar 18, 2020 at 3:45 PM David Feuer mailto:david.feuer@gmail.com> wrote: That's not a lot of lead time. On Wed, Mar 18, 2020, 2:47 PM Carter Schonwald mailto:carter.schonwald@gmail.com> wrote: hey everyone, because so much important stuff for the community, it makes sense to add 2fa required for the org, are there any good reasons to either wait to do this, or not do it? Feedback welcome! (if theres no objections i'll do it friday or this weekend, so theres some lead time for anyone who's not setup for that yet) Best wishes and great health to all -carter _______________________________________________ Libraries mailing list Libraries@haskell.orgmailto:Libraries@haskell.org http://mail.haskell.org/cgi-bin/mailman/listinfo/libraries -- You received this message because you are subscribed to the Google Groups "haskell-core-libraries" group. To unsubscribe from this group and stop receiving emails from it, send an email to haskell-core-libraries+unsubscribe@googlegroups.commailto:haskell-core-libraries+unsubscribe@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/haskell-core-libraries/CAHYVw0xA-Fzh1G-YUx...https://groups.google.com/d/msgid/haskell-core-libraries/CAHYVw0xA-Fzh1G-YUxWtV1HgOg%3D5o4jwYKNOipU-7dpYrYmA-g%40mail.gmail.com?utm_medium=email&utm_source=footer.

Reply

Sign in to reply online Use email software

Carter Schonwald

6:07 p.m.

New subject: [core libraries] Re: intent to enable 2fa requirement for github.com/haskell org

theres a reason i emailed ghc-devs + libraries, to make sure its visible! we can remediate any perms that get busted that need to be reinstated, but its been sitting like it is for long enough :) On Wed, Mar 18, 2020 at 5:38 PM Alexandre Rodrigues Baldé < alexandreR_B@outlook.com> wrote:

This is a sensible measure, but I doubt people that contribute to GHC via GitHub (even if just for read access) are on this maling list.

Perhaps an issue can be created to notify people of this, rather than let them run into errors and wonder what they did wrong.

------------------------------ *De:* ghc-devs em nome de chessai . < chessai1996@gmail.com> *Enviado:* Wednesday, March 18, 2020 9:28:51 PM *Para:* Carter Schonwald *Cc:* David Feuer ; Haskell Libraries < libraries@haskell.org>; ghc-devs ; core-libraries-committee@haskell.org
...
*Assunto:* Re: [core libraries] Re: intent to enable 2fa requirement for github.com/haskell org

I agree with Carter here, 2FA is very accessible and if someone runs into a problem we can just tell them they need 2FA. It wouldn't be much more than a 10 minute disruption. Perhaps we could send out notice that it will take into effect at a certain point, maybe giving people a week or two. But we should really have this be mandatory.

On Wed, Mar 18, 2020, 1:09 PM Carter Schonwald wrote:

true, otoh, 2fa in various usable forms has been widely available for years, and we can reonboard people pretty easily. Its critical haskell infra and to the best of my knowledge, current 2fa tooling is pretty accessible to everyone globally. If someone has specific issues we can address them as they arise!

On Wed, Mar 18, 2020 at 3:45 PM David Feuer wrote:

That's not a lot of lead time.

On Wed, Mar 18, 2020, 2:47 PM Carter Schonwald wrote:

hey everyone, because so much important stuff for the community, it makes sense to add 2fa required for the org, are there any good reasons to either wait to do this, or not do it? Feedback welcome!

(if theres no objections i'll do it friday or this weekend, so theres some lead time for anyone who's not setup for that yet)

Best wishes and great health to all -carter _______________________________________________ Libraries mailing list Libraries@haskell.org http://mail.haskell.org/cgi-bin/mailman/listinfo/libraries

-- You received this message because you are subscribed to the Google Groups "haskell-core-libraries" group. To unsubscribe from this group and stop receiving emails from it, send an email to haskell-core-libraries+unsubscribe@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/haskell-core-libraries/CAHYVw0xA-Fzh1G-YUx... https://groups.google.com/d/msgid/haskell-core-libraries/CAHYVw0xA-Fzh1G-YUxWtV1HgOg%3D5o4jwYKNOipU-7dpYrYmA-g%40mail.gmail.com?utm_medium=email&utm_source=footer .

Reply

Sign in to reply online Use email software

1890

Age (days ago)

1890

Last active (days ago)

Download

6 comments

5 participants

tags

participants (5)

Alexandre Rodrigues Baldé
Ben Gamari
Carter Schonwald
chessai .
David Feuer