Test Wiki:Community portal: Difference between revisions
From Test Wiki
Content deleted Content added
→Require 2FA for highly privileged groups: Closing discussion (DiscussionCloser v.1.7.4) |
|||
| Line 231: | Line 231: | ||
==Require 2FA for highly privileged groups== |
==Require 2FA for highly privileged groups== |
||
{{atop |
|||
| status = |
|||
| result = {{Not done|Not done}} as there is no consensus to require 2FA on highly privileged groups at this time. [[User:Codename Noreste|<span style="font-family:Verdana;color:#0024FF">'''''Codename Noreste'''''</span>]] 🤔 [[User talk:Codename Noreste|<span style="font-family:Verdana;color:#0A16A5">''Talk''</span>]] 21:27, 18 November 2024 (UTC) |
|||
}} |
|||
I'm proposing that we should require 2FA for Interface Admin, Steward and Sysadmin group members as security precautions, as IAs can edit pages that would allow them privilege escalation, and stewards/sysadmins can give such permissions out which could cause issues if their accounts were compromised. Additionally, I think bots with admin/iadmin perms should have 2FA required as they are probably less monitored security wise. [[User:Zippybonzo|Zippybonzo]] ([[User talk:Zippybonzo|talk]]) 10:44, 12 November 2024 (UTC) |
I'm proposing that we should require 2FA for Interface Admin, Steward and Sysadmin group members as security precautions, as IAs can edit pages that would allow them privilege escalation, and stewards/sysadmins can give such permissions out which could cause issues if their accounts were compromised. Additionally, I think bots with admin/iadmin perms should have 2FA required as they are probably less monitored security wise. [[User:Zippybonzo|Zippybonzo]] ([[User talk:Zippybonzo|talk]]) 10:44, 12 November 2024 (UTC) |
||
| Line 238: | Line 244: | ||
:{{o}}: I don't see a reason to add it since the rate of accounts being compromised has been vary low --[[User:Cocopuff2018|Cocopuff2018]] ([[User talk:Cocopuff2018|talk]]) 14:24, 12 November 2024 (UTC) |
:{{o}}: I don't see a reason to add it since the rate of accounts being compromised has been vary low --[[User:Cocopuff2018|Cocopuff2018]] ([[User talk:Cocopuff2018|talk]]) 14:24, 12 November 2024 (UTC) |
||
:{{oppose}} There hasn't been a case where an account was compromised, so I don't see any reason to make 2FA mandatory [[User:TheAstorPastor|<span style="font-family:Segoe print; color:#8B0000; text-shadow:gray 0.2em 0.2em 0.4em;">The AP </span>]] ([[User talk:TheAstorPastor|<span style="font-family:Segoe print; color:#AA336A">''talk''</span>]]) 16:01, 12 November 2024 (UTC) |
:{{oppose}} There hasn't been a case where an account was compromised, so I don't see any reason to make 2FA mandatory [[User:TheAstorPastor|<span style="font-family:Segoe print; color:#8B0000; text-shadow:gray 0.2em 0.2em 0.4em;">The AP </span>]] ([[User talk:TheAstorPastor|<span style="font-family:Segoe print; color:#AA336A">''talk''</span>]]) 16:01, 12 November 2024 (UTC) |
||
{{abot}} |
|||
