StorageBJun 5, 2024

How is everyone handling the 2FA requirement for GitHub?

https://lemmy.one/post/15370878

How is everyone handling the 2FA requirement for GitHub? - Lemmy.one

Just wondering what people are using to meet the 2FA requirement GitHub has been rolling out. I don’t love the idea of having an authenticator app installed on my phone just to log into GitHub. And really don’t want to give them my phone number just to log in.

Show threadLucidDaemon
Yubikey, but thats just a personal preference. A password manager works just as well.
Jun 5, 2024 at 4:54amWeb
Show threadkevincoxJun 10, 2024
The problem with Yubikey is that it doesn’t have a good enough management story for broad use. I do use it for a few core sites (like GitHub) but if I lose a key I need to get a replacement and register that replacement with every site I have set up U2F 2FA on. This is ok with a few core accounts but doesn’t scale to the hundreds of sites that I have an account with. I am sure to miss a few and then either I can’t log in with the new key or get completely locked out when I lose that key and get a second replacement.