I-2FA yisazisi kunye nendlela yokufikelela yokhuseleko olufuna iindlela ezimbini zokuchongwa.
Kunyaka ophelileyo sabelana ngeendaba apha kwibhlog ukuba abaphuhlisi bendawo yokugcina iphakheji yePyPI bebesebenza ekutshintsheni iPyPI ukuya kuqinisekiso lwezinto ezimbini ezinyanzelekileyo kwiiphakheji ezibalulekileyo.
Isizathu sokukhankanya oku kukuba inguqu yayisele igqityiwe kwiintsuku ezimbalwa ezidlulileyo Kwaye ngesibhengezo, abaphuhlisi baphinde babhengeze isigqibo sokuhambisa zonke iiakhawunti zabasebenzisi ezigcina ubuncinci iprojekthi enye okanye ziyinxalenye yombutho okhetha iipakethi zokusetyenziswa okunyanzelekileyo kokuqinisekiswa kwezinto ezimbini.
Ukusebenzisa ukuqinisekiswa kwezinto ezimbini (eyaziwa ngokuba yi-2FA) kungenxa yokuba indawo yokugcina Isoftware esemthethweni yePython, iPyPI, iye yaba lixhoba lokuhlaselwa izihlandlo ezininzi kwikhonkco lonikezelo kwiminyaka yakutshanje, kwezinye apho abaduni baye babeka esichengeni iiakhawunti zogcino ukuze batofe ikhowudi engalunganga kwiiprojekthi.
Xa kunyanzeliswa i-2FA kubagcini beprojekthi, I-PyPI ifuna ukunqanda uhlaselo lokuthathwa kweakhawunti, ngaloo ndlela iqinisekisa uluntu ukuba ngabantu abanxulumene neprojekthi kuphela abanokulayisha, ukuguqula, okanye ukususa ikhowudi.
Namhlanje, njengenxalenye yaloo nzame yexesha elide ukukhusela i-ecosystem ye-Python, sibhengeza ukuba yonke i-akhawunti egcinwe yiyo nayiphi na iprojekthi okanye umbutho kwi-PyPI kuya kufuneka ivule i-2FA kwi-akhawunti yabo ekupheleni kuka-2023.
Ukususela ngoku kude kube sekupheleni konyaka, i-PyPI iya kuqala ukufumana ukufikelela kwiimpawu ezithile zesayithi ngokusekelwe kusetyenziso lwe-2FA. Kwakhona, sinokuqala ukukhetha abasebenzisi abathile okanye iiprojekthi zesicelo sokuqala.
Ngaloo ndlela ukusetyenziswa kwezinto ezimbini zokuqinisekisa ukwandisa ukhuseleko lwenkqubo yophuhliso kwaye iya kuthintela iiprojekthi ekubeni zenze utshintsho olubi ngenxa yokuvuza kweziqinisekiso, kusetyenziswa igama eliyimfihlo elifanayo kwindawo ephazamisekileyo, ukugqekeza kwinkqubo yendawo yomphuhlisi, okanye ukusebenzisa iindlela zobunjineli bezentlalo.
Ukufumana ukufikelela kubahlaseli ngenxa yokuthunjwa kwe-akhawunti yenye yezoyikiso eziyingozi kakhulu, njengoko kwimeko yokuhlaselwa okuphumelelayo, utshintsho olubi lunokutshintshwa ngezinye iimveliso kunye namathala eencwadi asebenzisa iphakheji edibeneyo njengokuxhomekeka.
Njengendlela ekhethiweyo yokuqinisekiswa kwezinto ezimbini, iskimu esisekwe kuphawu siyabhengezwa izixhobo zehardware ezixhasa iFIDO U2F kunye neWebAuthn protocol, leyo ikuvumela ukuba ufikelele kwinqanaba eliphezulu lokhuseleko xa kuthelekiswa nokuvelisa amagama agqithisiweyo exesha elinye.
Ukongeza kwiithokheni, unokusebenzisa ii-apps zexesha elinye ezisekelwe kwi-password ezixhasa iprothokholi ye-TOTP, njenge-Authy, i-Google Authenticator, kunye ne-FreeOTP. Xa ukhuphela iipakethe, abaphuhlisi bakwakhuthazwa ukuba batshintshele kwindlela yokuqinisekisa 'Abapapashi abaThenjiweyo' ngokusekelwe kumgangatho we-OpenID Connect (OIDC) okanye basebenzise iimpawu ze-API.
Abasebenzisi abaninzi baya kuba nefestile yeenyanga ezintandathu zokusebenzisa ungqinisiso olongezelelweyo kwiakhawunti yabo, ngezicwangciso ezizotyiweyo zokwenza i-2FA ibe sinyanzelo ekupheleni kwalo nyaka. Iposti yebhlog esemthethweni evela kwindawo yokugcina iPython ichaza ngakumbi:
“Phakathi ngoku ukuya ekupheleni konyaka, iPyPI izakuqala ukufikelela kwiinkalo ezithile zesayithi esekwe kusetyenziso lwe-2FA. Kwakhona, sinokuqala ukukhetha abasebenzisi abathile okanye iiprojekthi zesicelo sokuqala. ”
Kufuneka kukhankanywe ukuba njalo inguqu yomsebenzisi icwangciselwe ukuba igqitywe ekupheleni kuka-2023. Phambi komhla wokugqibela, kuya kubakho uthintelo ngezigaba lomsebenzi ofumanekayo kubaphuhlisi abangakhange benze ungqinisiso lwezinto ezimbini. Ukongeza, kwiindidi ezithile zabasebenzisi, imfuno yokuvumela ukuqinisekiswa kwezinto ezimbini kuya kusebenza kwangaphambili.
Ekugqibeleni, sinokuthi isigqibo sePyPI sokwenza i-2FA isinyanzelo kubo bonke abasebenzisi abagcina iprojekthi okanye umbutho kwiqonga linyathelo elichanekileyo lokuphucula ukhuseleko.
Ukuba ukhona unomdla wokwazi ngakumbi ngayo, ungajonga iinkcukacha Kule khonkco ilandelayo.