On Wed, Nov 16, 2016 at 8:30 AM Cyken Zeraux cykenzeraux@gmail.com wrote:
2FA would be a big prevention of these problems.
Allowing accounts to be handled through 3rd party services, such as a Github, would also prevent it. Github already has 2FA available for logins.
Relying on Github prevents nothing if you don't use 2FA or a unique password ;-)
Really, the single best thing one can do to prevent this from happening is using unique passwords. This is best practice for *any* website you have access to, not just Wikimedia.
Enabling 2FA on websites that provide it is the next step everyone should take, if and when they can.
-Chad