[Tickets #14264] Optional support for 2-factor authentication
noreply at bugs.horde.org
noreply at bugs.horde.org
Fri Feb 19 14:12:01 UTC 2016
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: https://bugs.horde.org/ticket/14264
------------------------------------------------------------------------------
Ticket | 14264
Created By | aaronp at critd.com
Summary | Optional support for 2-factor authentication
Queue | Horde Base
Version | Git master
Type | Enhancement
State | New
Priority | 1. Low
Milestone |
Patch |
Owners |
------------------------------------------------------------------------------
aaronp at critd.com (2016-02-19 14:12) wrote:
There have been times where our webmail installation has been targeted
by distant IPs trying to send spam email using compromised user
accounts. Of course a big part of preventing this from happening is
educating our users on password safety, expiring weak passwords in
favor of newer, stronger passwords, etc. We're working hard on that,
but until the time where our users passwords are 100% strong, safe,
and secure (i.e. never), we'd appreciate additional tools to help
prevent or at least mitigate these risks.
One of the options that came to mind was support for 2-factor
authentication on the login screen. We would prefer if users could
somehow opt-in to 2-factor authentication so that not every user would
have to learn how to use it at once. If a per-user opt-in system is
not possible or not practical, than an all-or-none approach would be
fine too. My initial preference would be for Google Authenticator
support, but other options might be just as good or better.
More information about the bugs
mailing list