[aur-general] AUR ssh:// click-to-copy URLs don't work
Manuel Reimer
manuel.reimer at gmx.de
Sun Apr 3 09:58:21 UTC 2022
On 02.04.22 03:28, Kevin Morris via aur-general wrote:
> GitLab requires that you create an account with Arch Linux Keycloak at
> accounts.archlinux.org and use that to gain access. It takes about five
> minutes to complete, and OTPs are pretty common these days so you likely
> would need your OTP app for other two-factors as well.
Is it enough to have 2FA enabled on my GitHub account?
To be honest: Most of this 2FA stuff is even more a pain in the ass as
passwords are. I still hope that, one day, there will be "the standard"
for "single sign on". For example I would prefer to have a small device
that I can put on my key-chain (first factor) and an easy to remember
pin that I (best case) enter directly on this dedicated security device
(second factor). It would be such a relief if this would be all I need
to access **everything** online. And no: A smartphone is not such a
device. a) I don't trust them b) what happens if my phone dies?
Biggest problem with all 2FA protected stuff: You get this sheet with
shitty "keep these for recovery" codes including a note "if you loose
these, noone can unlock your account for you". Where to put these? Just
save to my PC? Wouldn't this be exactly what everyone suggests *not* to
do (save "passwords" unencrypted in a plain text file). Better print it
out? But where to store it?
Sorry but this is trying to solve a "pain in the ass" (passwords) with
even more pain in the ass (even more complicated steps to sign in).
Manuel
More information about the aur-general
mailing list