On Thu, Apr 28, 2016 at 7:32 PM, Joshua D. Drake <jd@commandprompt.com> wrote:
> On 04/28/2016 11:29 AM, Stefan Kaltenbrunner wrote:
>
>>> I think a reasonable solution would be to allow anyone who has a
>>> community account to be able to edit the wiki. Here is the catch:
>>>
>>> Turn on 2FA
>>>
>>> Spammers (for the most part) are not going to bother trying to get into
>>> the system with 2FA configured. They are after low hanging fruit.
>>
>>
>> what would you use as the second factor?
>
>
> I would use Google Authenticator. It is open source and works on Windows,
> Android, Linux(Chrome), Apple etc...
We've seen them wait out the cool-off period, and take the time to
email us asking to get editor privileges. I don't believe using Google
Authenticator would put them off at all.
--
Dave Page
Blog: http://pgsnake.blogspot.com
Twitter: @pgsnake
EnterpriseDB UK: http://www.enterprisedb.com
The Enterprise PostgreSQL Company