Il 17/06/26 18:51, Adam Williamson ha scritto:
> As someone with 2FA enabled, I have to use my second factor when
> authenticating to kerberos in order to be able to submit builds. Yes, I
> don't have to use the second factor every time I do a push to dist-git,
> at least not currently (though 2FA was required to issue the token the
> process uses, and that token can be stored pretty securely). But as
> Daniel says, waiting for things to be perfect before having the
> requirement doesn't seem sensible. It's still much safer with 2FA on
> than without.

I also have 2FA enabled and use kerberos to avoid logging in separately 
in each Fedora places. But as someone who do 99.99% of Fedora related 
work on my home PC or in a VM inside it, I'd like to have the kerberos 
ticket validity more than just a day... at least a week, or perhaps a 
month. I doubt anyone stealing my PC or sneaking access to it just to 
hack Fedora stuff...

Mattia


-- 
_______________________________________________
devel mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: 
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam, report it: 
https://forge.fedoraproject.org/infra/tickets/issues/new

Reply via email to