Wikitech admin peoples!
I was doing bad things to my phone last night (reflashing it) and I lost the 2 factor auth metadata for my authentication app. Because of this I can no longer log in to wikitech.
I wasn't able to find any documentation on wikitech about how to reset it -- so I need your help to do that I think? I still know my password; so I'm not looking to reset that -- maybe just temporarily disable two factor auth on my account (Mwalker) and I'll re-enroll myself?
~Matt Walker Wikimedia Foundation Fundraising Technology Team
On Fri, Feb 28, 2014 at 9:15 PM, Matthew Walker mwalker@wikimedia.org wrote:
I wasn't able to find any documentation on wikitech about how to reset it -- so I need your help to do that I think? I still know my password; so I'm not looking to reset that -- maybe just temporarily disable two factor auth on my account (Mwalker) and I'll re-enroll myself?
I don't know that much about the process but I believe step one is to find the slips of paper that you wrote down the codes that you're supposed to use in this very situation.
-Jeremy
Don't have them :p
~Matt Walker Wikimedia Foundation Fundraising Technology Team
On Fri, Feb 28, 2014 at 1:23 PM, Jeremy Baron jeremy@tuxmachine.com wrote:
On Fri, Feb 28, 2014 at 9:15 PM, Matthew Walker mwalker@wikimedia.org wrote:
I wasn't able to find any documentation on wikitech about how to reset it -- so I need your help to do that I think? I still know my password; so
I'm
not looking to reset that -- maybe just temporarily disable two factor
auth
on my account (Mwalker) and I'll re-enroll myself?
I don't know that much about the process but I believe step one is to find the slips of paper that you wrote down the codes that you're supposed to use in this very situation.
-Jeremy
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
Correct, the scratch codes are the only way to login.
If you don't have this, you'll have to get someone to remove your preference in the db. On Feb 28, 2014 1:32 PM, "Matthew Walker" mwalker@wikimedia.org wrote:
Don't have them :p
~Matt Walker Wikimedia Foundation Fundraising Technology Team
On Fri, Feb 28, 2014 at 1:23 PM, Jeremy Baron jeremy@tuxmachine.com wrote:
On Fri, Feb 28, 2014 at 9:15 PM, Matthew Walker mwalker@wikimedia.org wrote:
I wasn't able to find any documentation on wikitech about how to reset
it
-- so I need your help to do that I think? I still know my password; so
I'm
not looking to reset that -- maybe just temporarily disable two factor
auth
on my account (Mwalker) and I'll re-enroll myself?
I don't know that much about the process but I believe step one is to find the slips of paper that you wrote down the codes that you're supposed to use in this very situation.
-Jeremy
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Please reset my 2 factor auto preference in the wikitech database.
My GPG key is available from the MIT keyserver [0]. Establishment of ownership of the Mwalker LDAP account by this email can occur via gerrit [1], or the edit history of my user page on [2].
(Incidently; I should probably get more signatures on my key... anyone in the office want to sign it?)
Thanks, Matt Walker
[0] D731C1C0 -- available from http://pgp.mit.edu/pks/lookup?search=mwalker%40wikimedia.org&op=indexi [1] https://gerrit.wikimedia.org/r/#/admin/groups/28,members [2] https://wikitech.wikimedia.org/wiki/User:Mwalker
On Fri, Feb 28, 2014 at 10:23 PM, Matthew Walker mwalker@wikimedia.org wrote:
Please reset my 2 factor auto preference in the wikitech database.
My GPG key is available from the MIT keyserver [0]. Establishment of ownership of the Mwalker LDAP account by this email can occur via gerrit [1], or the edit history of my user page on [2].
I'm not sure how any of that establishes anything?
(Incidently; I should probably get more signatures on my key... anyone in the office want to sign it?)
The simplest option if you're in the office is to just tell an op in person. (who can verify who you are because they know you)
[0] D731C1C0 -- available from http://pgp.mit.edu/pks/lookup?search=mwalker%40wikimedia.org&op=indexi
Please don't use short key IDs. Also, any other user could make a key with the same address you used and submit it to the keyserevers and then it would also show up in search results for your address. (plus we shouldn't trust the keyservers themselves so much)
More about short key IDs: http://www.asheesh.org/note/debian/short-key-ids-are-bad-news.html
[1] https://gerrit.wikimedia.org/r/#/admin/groups/28,members [2] https://wikitech.wikimedia.org/wiki/User:Mwalker
[2] redirects (somehow??) to another domain. Maybe better to link straight to the history page. https://wikitech.wikimedia.org/w/index.php?title=user:mwalker&action=his...
-Jeremy
On Fri, Feb 28, 2014 at 2:43 PM, Jeremy Baron jeremy@tuxmachine.com wrote:
On Fri, Feb 28, 2014 at 10:23 PM, Matthew Walker mwalker@wikimedia.org wrote:
Please reset my 2 factor auto preference in the wikitech database.
My GPG key is available from the MIT keyserver [0]. Establishment of ownership of the Mwalker LDAP account by this email can occur via gerrit [1], or the edit history of my user page on [2].
I'm not sure how any of that establishes anything?
I'm attempting to establish, I think the term is, a preponderance of truth from less trusted authorities. Beyond this point though the argument becomes silly; because if I own those accounts (and I do); I can submit, +2 things, deploy to the site (because I'm part of the deployment group), etc.
(Incidently; I should probably get more signatures on my key... anyone in the office want to sign it?)
The simplest option if you're in the office is to just tell an op in person. (who can verify who you are because they know you)
I'm assuming that not all ops people know how to do this / or are willing to find out. And not all opsens are located in the office. Additionally, we submit SSH key revocation requests via email -- I'm just doing the same thing in a public list because this a more public resource and I started with the assumption that I didn't need a root to do this.
[2] redirects (somehow??) to another domain. Maybe better to link straight to the history page.
https://wikitech.wikimedia.org/w/index.php?title=user:mwalker&action=his...
It's using #REDIRECT; you're correct though in that it should be a soft redirect. I'd change it; but... I can't... :p
Jeremy Baron wrote:
On Fri, Feb 28, 2014 at 10:23 PM, Matthew Walker mwalker@wikimedia.org wrote:
[2] redirects (somehow??) to another domain.
That page contains "#REDIRECT [[meta:User:Mwalker (WMF)]]". Presumably the wiki at wikitech.wikimedia.org has $wgDisableHardRedirects set to false.
https://www.mediawiki.org/wiki/Manual:$wgDisableHardRedirects
MZMcBride
wikitech-l@lists.wikimedia.org