[svn] - [hg] - [git] - [bugzilla] - [ssl] - [mail]
News archive: (submit news)
Icculus.org now supports two-factor authentication via Google Authenticator. Both ssh logins and webmail can be protected by this extra layer of security.
The system is opt-in. By default, nothing changes for you, but we encourage you to enable two-factor auth wherever you are able. To set it up:
Now when you ssh to your icculus.org shell account, you will be prompted for your password _and_ the current code from your Google Authenticator app, which changes every 30 seconds. Please note that if you have a valid private key configured, you will not be prompted for either a password or two-factor code, so that route will continue to work as expected, for automated logins, etc.
Webmail can also be protected:
Next time you log into webmail with a valid password, you'll also be prompted for the current code from your smart phone before you can log in. Please note that IMAP and SMTP are not protected by 2-factor auth at this time, nor do we offer "app-specific passwords" at the moment.
Also, a gentle reminder: two-factor auth is powerful stuff, but you should also use strong, unique passwords everywhere. Using a password manager like 1Password or KeePass or LastPass (etc!) is important in modern times.
[ email newsmaster | get news rdf ]