> On 08/14/2018 11:34 AM, Colin Watson wrote:
> > How would this work, even conceptually? Some kind of extra challenge
> > when doing SFTP uploads or git/bzr pushes to ask for 2FA (and some
> > timeout arrangement so that it isn't hopelessly annoying)? What about
> > FTP uploads?
>
> In my opinion, SFTP should be the default for uploads to Ubuntu*, and we
> should phase out FTP. My local /etc/dput.cf has been patched to do this
> for a while now, and it works fine.
The reason we haven't done this is that there's no good way to make it
the default in everyone's dput configuration.
> If this is done, we should be able to use PAM with google-authenticator.
Not an option; Launchpad's SSH endpoints are custom servers, not
OpenSSH, and don't use PAM.
--
Colin Watson [cjwatson@ubuntu.com]
--
ubuntu-devel mailing list
ubuntu-devel@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-devel
