Requiring 2FA for Github Accounts in OCA


Jason Keirstead
 

Hello everyone; 

I would like to propose that the OCA require everyone in our Gitub organization to have 2FA enabled.
 
This is a setting available on Github and in 2022 it should be considered best practice. There are a multitude of free and widely available options for 2FA on Github.

Does anyone have any reason we should not turn this on?
 
-
Jason Keirstead
Distinguished Engineer, CTO - IBM Security Threat Management
www.ibm.com/security
Declare an Emergency: USA +1 888 241 9812, Global +1 312 212 8034
 
Assistant - Mauricio Durán Cambronero (mauduran@...)

Co-Chair - Open Cybersecurity Alliance, Project Governing Board
www.opencybersecurityalliance.org
 


Join oca-pgb@lists.oasis-open-projects.org to automatically receive all group messages.