On Wed, Nov 16, 2016 at 8:30 AM Cyken Zeraux <cykenzeraux(a)gmail.com> wrote:
2FA would be a big prevention of these problems.
Allowing accounts to be handled through 3rd party services, such as a
Github, would also prevent it. Github already has 2FA available for logins.
Relying on Github prevents nothing if you don't use 2FA or a unique
password ;-)
Really, the single best thing one can do to prevent this from happening is
using
unique passwords. This is best practice for *any* website you have access
to,
not just Wikimedia.
Enabling 2FA on websites that provide it is the next step everyone should
take,
if and when they can.
-Chad