At the very least if 2FA is not possible for you;
# sign up for the have I been pwned website so you get alerts when your passwords may have been compromised # use a password manager like 1password so that you can use long unique passwords for each site
T
On Wed, 16 Nov 2016 16:39 Chad, innocentkiller@gmail.com wrote:
On Wed, Nov 16, 2016 at 8:30 AM Cyken Zeraux cykenzeraux@gmail.com wrote:
2FA would be a big prevention of these problems.
Allowing accounts to be handled through 3rd party services, such as a Github, would also prevent it. Github already has 2FA available for
logins.
Relying on Github prevents nothing if you don't use 2FA or a unique password ;-)
Really, the single best thing one can do to prevent this from happening is using unique passwords. This is best practice for *any* website you have access to, not just Wikimedia.
Enabling 2FA on websites that provide it is the next step everyone should take, if and when they can.
-Chad _______________________________________________ Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l