**Lup Yuen Lee 李立源** @lupyuen@qoto.org · 2022-12-15T04:18:39Z

Lup Yuen Lee 李立源 @lupyuen@qoto.org

"#GitHub will require all users who contribute code on GitHub[.]com to enable one or more forms of Two-Factor Authentication (2FA) by the end of 2023"

https://github.blog/2022-12-14-raising-the-bar-for-software-security-next-steps-for-github-com-2fa/

Dec 15, 2022, 04:18 · · Tusky · · ·

**Paolo Redaelli** @paoloredaelli@mastodon.uno · Dec 15, 2022, 05:28

**Paolo Redaelli** @paoloredaelli@mastodon.uno · Dec 15, 2022, 05:28

Dec 15, 2022, 05:28

Paolo Redaelli @paoloredaelli@mastodon.uno

@lupyuen
With this requirements many developers and projects will consider moving elsewhere

**io+** @io@snowdin.town · Dec 15, 2022, 05:43

**io+** @io@snowdin.town · Dec 15, 2022, 05:43

Dec 15, 2022, 05:43

io+ @io@snowdin.town

@paoloredaelli @lupyuen what why? 2FA is just good common sense

**Q.U.I.N.N.** @icedquinn@blob.cat · Dec 15, 2022, 05:44

**Q.U.I.N.N.** @icedquinn@blob.cat · Dec 15, 2022, 05:44

Dec 15, 2022, 05:44

Q.U.I.N.N. @icedquinn@blob.cat

@io @paoloredaelli @lupyuen dont want to deal with the scratch codes tbh

**io+** @io@snowdin.town · Dec 15, 2022, 05:44

**io+** @io@snowdin.town · Dec 15, 2022, 05:44

Dec 15, 2022, 05:44

io+ @io@snowdin.town

@icedquinn @paoloredaelli @lupyuen …then use TOTP?

**Q.U.I.N.N.** @icedquinn@blob.cat · Dec 15, 2022, 05:47

**Q.U.I.N.N.** @icedquinn@blob.cat · Dec 15, 2022, 05:47

Dec 15, 2022, 05:47

Q.U.I.N.N. @icedquinn@blob.cat

@io @lupyuen @paoloredaelli in discord the corporate policy is for support to abandon you if 2FA is turned on but otherwise they will respond to tickets about account problems

usually when you turn on TOTP tokens you get a 'scratch code' which is an emergency password but then you're expected to have it on a laminated placard or some shit in a records box