This archive is retained to ensure existing URLs remain functional. It will not contain any emails sent to this mailing list after July 1, 2024. For all messages, including those sent before and after this date, please visit the new location of the archive at https://mailman.ripe.net/archives/list/[email protected]/
[members-discuss] two-factor authentication mandatory
- Previous message (by thread): [members-discuss] Er is een ticket voor u aangemaakt: T20240111.0031 - Re: two-factor authentication mandatory
- Next message (by thread): [members-discuss] two-factor authentication mandatory
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
George Klissiaris
gklis at sarantaporo.gr
Thu Jan 11 14:52:02 CET 2024
Hello Michael, Maybe a solution to the problem you mentioned would be to use a personal password manager with strong encryption that also supports TOTP. At least this is what I use for a long time without any problem. My suggestion: https://keepassxc.org/ https://keepassxc.org/docs/ https://www.linux.org/threads/in-depth-tutorial-how-to-set-up-2fa-totp-with-keepassxc-aegis-and-authy.36577/ Best Regards, *Georgios Kleisiaris* Board Member & Administrator *Sarantaporo.gr Non Profit Organization* 28 Karaiskaki Str., 10554, Athens, Greece Email: gklis at sarantaporo.gr, Web: www.sarantaporo.gr Στις Πέμ 11 Ιαν 2024 στις 3:36 μ.μ., ο/η Mike B <michael at booth.technology> έγραψε: > > Hello, > > I agree completely with the use of 2FA and do agree with the spirit of > this being mandatory. However the current state of RIPE NCC MFA is not > suitable to be made mandatory. Namely the TOTP requires a phone (sms) or > TOTP App. I would like to see support for FIDO2 keys, if this is not > possible OTP via email would be a compromise. > > > > My rational for this is that some organisations do not allow phones within > the office, nor have any Apps available to install on their systems. > Perhaps a more generic scenario is if a phone is out of battery. I'm sure > you can appreciate while I am in favour of MFA I think this must be in a > different format. > > > I'm aware this is a feature many have been keen for for a while. I see > two ways forward: > 1) RIPE supports another method of MFA (FIDO KEYS or emailed OTP). > 2) RIPE makes Mandatory MFA the choice of the LIR admin. > > I would like to hear other views on this request to the RIPE NCC. I am > not looking for suggestions for workarounds such as online TOTP or writing > my own code for this. > > > Regards, > > Michael > _______________________________________________ > members-discuss mailing list > members-discuss at ripe.net > https://mailman.ripe.net/ > Unsubscribe: > https://lists.ripe.net/mailman/options/members-discuss/gklis%40sarantaporo.gr > -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://www.ripe.net/ripe/mail/archives/members-discuss/attachments/20240111/f287e3e5/attachment.html>
- Previous message (by thread): [members-discuss] Er is een ticket voor u aangemaakt: T20240111.0031 - Re: two-factor authentication mandatory
- Next message (by thread): [members-discuss] two-factor authentication mandatory
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]