Replies: 13 comments 11 replies
-
Yes, this is a good solution. I really NEED this, as my phone died last week and I am scared that if it happens, I would be completely locked out of Github account. |
Beta Was this translation helpful? Give feedback.
-
Stand firm... but you should take a closer look at the alternatives now if you don't have any experience with them yet. I am also already in the process of clearing my account. (unlike, unstar, un..., delete all) 😉 |
Beta Was this translation helpful? Give feedback.
-
... one more: =>> you should open a ticket for official support! this is the one and only way they/GitHub/MS recognise the opinion of the user base. |
Beta Was this translation helpful? Give feedback.
-
... the real reason: they wants to know your mobile number. email addresses you use one or more, you do change it like your needs, but with your mobile they can match your profile more exact than any other selector, because your mobile you do not change much to often! 😉 |
Beta Was this translation helpful? Give feedback.
-
GITHUB PLEASE DON'T ENABLE F@CKING 2FA! |
Beta Was this translation helpful? Give feedback.
-
Github did a bad job in communicating the options, and they just overran millions of users by their rude rollout enforment. Actually it's quite easy to do it from a plain pc this way: https://github.com/orgs/community/discussions/49715#discussioncomment-7068931 It's a bit annoying, but managable. You don't need any extra devices or apps. Standard Linux tools are sufficient. |
Beta Was this translation helpful? Give feedback.
-
Unbelievable. |
Beta Was this translation helpful? Give feedback.
-
⠀⠀⠀⠀⠀⠀⠀⠀⠀⠈⢿⡄⢻⡆⠀⠀⠀⠀⠻⣦⡿⢰⡟⠀⠀⠈⣿⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ |
Beta Was this translation helpful? Give feedback.
-
Github doesn't give a fuck about their users, move to a different vendor like Gitlab and don't let their garbage policy fly. |
Beta Was this translation helpful? Give feedback.
-
I have a day or two before my account gets permanently locked forever. Just want to say it's been fun while it lasted. While I only contributed to projects by participating in issues, feedback, and bug reporting, I was really looking forward to actually contributing code for the first time aside from my own open source projects. Guess I'll do that via projects hosted on GitLab. It's still a big shame though. I've moved to GitLab, and replaced Copilot with Codeium (better than copilot anyway, and free). |
Beta Was this translation helpful? Give feedback.
-
I was permanently locked out of my Microsoft account and lost all purchases due to 2fa using mobile, I don't want to take that risk on github. At least allow verification via email if you're going to force this nonsense. I have more than one email address, by the way. Github doesn't need to worry about me reusing my password-reset email for their forced 2fa. |
Beta Was this translation helpful? Give feedback.
-
Stop that shet, remove this requirement. |
Beta Was this translation helpful? Give feedback.
-
Stop that shet, remove this requirement of phone 2FA app / SMS on a limited country list only |
Beta Was this translation helpful? Give feedback.
-
I do not want to use my phone, an app, or my computer for 2FA. If anything happens to my phone or computer, I'm screwed. If anything happens to my backup keys/codes, I'm extra screwed. If someone gains access to either, I'm turbo screwed. Don't get me started on how easy it would be to gain access through mobile too, since all someone would need is my 4 digit unlock code.
If I have the authenticator on my computer, travel and decide to use another device to access my account: if I didn't also install the authentication app on this device nor brought my backup codes with me, I'm screwed. Email on the other hand can be used everywhere.
The majority of online services use email for 2FA, where a code is sent to your email. This is not only convenient, but just as secure for the most common email providers.
For example if someone wants to gain access to my email account, aside from having to figure out my email and password, they would have to go through a rigorous multi-step authentication check to make sure it's actually me. I would also receive notifications to my various devices, as well as to my recovery emails.
Please allow us to use email as 2FA. It's only fair since you're forcing us to do this.
Beta Was this translation helpful? Give feedback.
All reactions