On 2022-10-28 22:57, Ben Cooksley wrote:
Hi all,
Following some additional analysis of the situation I've now adjusted
the policy surrounding enforced use of 2FA.
Going forward it will only be enforced on people who are one of the
following:
- KDE Developers
- KDE e.V. Members (including the Board)
- KDE e.V. Staff (whether they be contractors or employees)
In addition, 2FA may be enforced on any person who has access to a
system that contains sensitive information, including but not limited
to stats.kde.org [1], metrics.kde.org [2] and collaborate.kde.org [3],
or who has additional privileges on those systems outside of those
granted to users by default. It may also be enforced if a person
becomes involved in a project in a meaningful way (ie. a long term
contributor) that does not result in them obtaining a developer
account or access to sensitive information.
Hi,
thanks a lot, this seems to be a very sensible solution for me.
That will still allow people to easily comment in things and make first
time contributions without any extra hassle.
Greetings
Christoph
Cheers,
Ben
Links:
------
[1] http://stats.kde.org
[2] http://metrics.kde.org
[3] http://collaborate.kde.org
--
Ignorance is bliss...
https://cullmann.io | https://kate-editor.org
