I think a two-way-authentification is the first, good step to increase the security for account authentification, like wikitech still use it. But it's still a user decision to activate i tor not?
Freundliche Grüße / Kind regards Florian -----Ursprüngliche Nachricht----- Von: [email protected] [mailto:[email protected]] Im Auftrag von Risker Gesendet: Donnerstag, 7. August 2014 10:50 An: Wikimedia developers Betreff: Re: [Wikitech-l] News about stolen Internet credentials; reducing Wikimedia reliance on usernames and passwords As someone with one of those "high risk" accounts, one time passwords would be more likely to make me drop those permissions. Any administrator has a "high risk" account given the opportunities that they have. Risker/Anne On 7 August 2014 07:59, Pine W <[email protected]> wrote: > I think we should start looking at alternative authentication systems > especially for high risk accounts. There are several variations on the > theme of one-time passwords that I think could bd explored. > > Pine > On Aug 6, 2014 11:05 PM, "Brian Wolff" <[email protected]> wrote: > > > On Aug 6, 2014 8:57 AM, "svetlana" <[email protected]> wrote: > > > > > > On Wed, 6 Aug 2014, at 21:49, Andre Klapper wrote: > > > > On Tue, 2014-08-05 at 22:05 -0700, Pine W wrote: > > > > > After reading this [1] I am wondering if Wikimedia should > > > > > start > > taking > > > > > steps to reduce reliance on usernames and passwords. > > > > > > > > What "steps" do you refer to, or is this intentionally vague? > > > > Disallowing usernames and logins? > > > > Two-step authentication/verification? > > > > Something else? > > > > > > > > andre > > > > > > from what i could read and parse: > > > use less of external things like skype and google accounts so that > > > there is only 1 username for everything > > > > > > > > > > The solution to stolen credentials is to combine all credentials so > > that > a > > single credential can control everything? > > > > --bawolff > > _______________________________________________ > > Wikitech-l mailing list > > [email protected] > > https://lists.wikimedia.org/mailman/listinfo/wikitech-l > _______________________________________________ > Wikitech-l mailing list > [email protected] > https://lists.wikimedia.org/mailman/listinfo/wikitech-l > _______________________________________________ Wikitech-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikitech-l _______________________________________________ Wikitech-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikitech-l
