Re: Proposal to the TSC: enable 2FA requirement across all orgs

Brian Behlendorf

Thanks Ry!  Let's add to the agenda for Thursday.


On 6/11/19 3:40 PM, Ry Jones wrote:
Where we are today:
for the main org, there are three users with commit bits and no 2FA. None of these users has made a commit in over a year to any Hyperledger project as far as I can tell. Thanks to everyone that enabled two factor auth! I think it's fairly low risk to enable the requirement for 2FA at any time the TSC says it's OK.

For Labs, we have ~80 people in the org and ~20 without 2FA enabled. I haven't pushed as hard on Labs, so I suspect we should delay enabling it for a while. I haven't audited who has write bits, but I assume it's close to 100%.

On Tue, Jun 4, 2019 at 7:22 AM Ry Jones <rjones@...> wrote:
I did an audit of the main org. Slightly over half of our 400 members are not using two factor authentication.

There is no easy way to tie those members to activity in the org.

Ry Jones
Community Architect, Hyperledger

Brian Behlendorf
Executive Director, Hyperledger
Twitter: @brianbehlendorf

Join to automatically receive all group messages.