I just received an email from Github that they are now ofically begin to require users who contribute code need to have 2FA enabled.

Why isn’t password + email already sufficient? Why do I need to use a third FA to satisfy their requirements? Is it reasonable to feel stumped or angry about it?

Would like to hear your thoughts about this.

    • macniel@feddit.deOP
      link
      fedilink
      arrow-up
      3
      ·
      edit-2
      1 year ago

      True, its more secure. But I think that it should be optional since its the users responsibility to keep their accounts safe. Good thing that GitHub offers various methods to add a second factor.