At the very least if 2FA is not possible for you;
# sign up for the have I been pwned website so you get alerts when your
passwords may have been compromised
# use a password manager like 1password so that you can use long unique
passwords for each site
T
On Wed, 16 Nov 2016 16:39 Chad, <innocentkiller(a)gmail.com> wrote:
On Wed, Nov 16, 2016 at 8:30 AM Cyken Zeraux
<cykenzeraux(a)gmail.com>
wrote:
2FA would be a big prevention of these problems.
Allowing accounts to be handled through 3rd party services, such as a
Github, would also prevent it. Github already has 2FA available for
logins.
Relying on Github prevents nothing if you don't use 2FA or a unique
password ;-)
Really, the single best thing one can do to prevent this from happening is
using
unique passwords. This is best practice for *any* website you have access
to,
not just Wikimedia.
Enabling 2FA on websites that provide it is the next step everyone should
take,
if and when they can.
-Chad
_______________________________________________
Wikitech-l mailing list
Wikitech-l(a)lists.wikimedia.org
https://lists.wikimedia.org/mailman/listinfo/wikitech-l