Skip to main content
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
[kiso-testing-dev] FW: [External] Important: Implementation of Mandatory 2FA Across all Eclipse Foundation GitHub Organizations
  • From: "Fischer, Sebastian" <sebastian.a.fischer@xxxxxxxxxxxxx>
  • Date: Wed, 28 Feb 2024 15:02:33 +0000
  • Accept-language: en-GB, en-US
  • Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=accenture.com; dmarc=pass action=none header.from=accenture.com; dkim=pass header.d=accenture.com; arc=none
  • Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=mA/KGR3dNdB9d2csmMd546Taz9fbOlqTmQvYXV8SqR4=; b=JWL4fRXc4ShOtGC4qj0SKEjJRjFYK4T8up5Bg94moDnJnSyarwNotWmNaAQFSjSRDdUAxyZO7h1dNVDX20GYInW/sWKPOW27h55YeRRQHHuKtPFc+A/IUha6k2KUTW7xBJ8mBCCGo8r4bbKLqUyYyZvo4JBYlUHTptXEMbP8DjNmGe4EwlWY9ajxB0Yx/3MU196rNSU+8kiOnB7elsaTjBeLhMxA1MAw3r4Xpz3E+sT8DoOhyblq398LIFzZkeP80LHY6mHEIU/3kTdLMekInzTBbsBEPei1Jeo5qzE3dmXe1V8Pr9aBQimqnYWUZ7rAt/bf0C739/t+nZvZxTbU+A==
  • Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=H7VaPn/YwAJ7GADHoYMtfTCvQwhy3BE/+OQdqrZV4N+Pxa7a4F/0Q1o34Lrt6zONMIQkGsxmDRX0lgVyfF50qQZreKdj7BnSyOXrYCs95ueLrMVIFR005B6tSYPcfMavYrn7aIYjf7dVtVR1ZkPbkVfNIYMtt0dum1vX4p4KaGCy59q0gZcFsd/MwgVzZ1NgyNovLnbp8shwyxobXyyEIPmIN+5umxsMk09p4DsEl/L36CvfGf3V/WYE8sbWd8Nl38ZL9MdpZwxYSbEu+LDXkO5RA5uoO91ePYXYrFVkK1cpUCekImZuow5bE0XYoNWcL+vDsC3Nfw7uoHs8Femk5A==
  • Delivered-to: kiso-testing-dev@xxxxxxxxxxx
  • Importance: high
  • List-archive: <https://www.eclipse.org/mailman/private/kiso-testing-dev/>
  • List-help: <mailto:kiso-testing-dev-request@eclipse.org?subject=help>
  • List-subscribe: <https://www.eclipse.org/mailman/listinfo/kiso-testing-dev>, <mailto:kiso-testing-dev-request@eclipse.org?subject=subscribe>
  • List-unsubscribe: <https://www.eclipse.org/mailman/options/kiso-testing-dev>, <mailto:kiso-testing-dev-request@eclipse.org?subject=unsubscribe>
  • Thread-index: AQHaalJ2fTsMiWVc6kyKf1iONN04vrEf2X2w
  • Thread-topic: [External] Important: Implementation of Mandatory 2FA Across all Eclipse Foundation GitHub Organizations

Hi all!

 

Please take care of it!

 

Best Regards / Mit freundlichen Grüßen,

 

signature_2971475006

Sebastian Fischer

Pronouns: (he/him/his)

IT/OT Software Engineering Manager

CIE  | IT/OT 

signature_1056408480

Frankfurt / Stuttgart

Mobile: +49 1 52 52 50 74 43

accenture.com

signature_3269099167signature_745474000signature_3244423675signature_2852000328signature_404136488

signature_2381886469signature_3636313476signature_3260086260

 

Accenture GmbH

Sitz: Kronberg. Registergericht: Königstein im Taunus, HRB 5920.

Geschäftsführung: Christina Raab (Vorsitzende der Geschäftsführung), Tobias Gehlhaar, Sven Gudehus, Dr. Markus Hamprecht, Antje Hoffmann, Ildiko Kreisz, Corinna Krezer, Marco Lechner, Katharina Michaelis, Karl Rathgeb, Tobias Regenfuß, Patrick Vollmer u.a.

 

 

From: mikael.barbero@xxxxxxxxxxxxxxxxxxxxxx <mikael.barbero@xxxxxxxxxxxxxxxxxxxxxx>
Date: Wednesday, 28. February 2024 at 15:28
To: security@xxxxxxxxxxxxxxxxxxxxxx <security@xxxxxxxxxxxxxxxxxxxxxx>
Cc: Fischer, Sebastian <sebastian.a.fischer@xxxxxxxxxxxxx>
Subject: [External] Important: Implementation of Mandatory 2FA Across all Eclipse Foundation GitHub Organizations

CAUTION: External email. Be cautious with links and attachments.

 

Dear Eclipse Kiso-testing Project Lead,

As part of our ongoing commitment to enhancing the security of your projects and repositories, we are excited to announce a significant advancement in our cybersecurity measures.

Following our previous communications, first on January 14th, second on February 2nd shared through the eclipse.org-committers mailing list, and detailed in the associated support ticket, we will be implementing a requirement for two-factor authentication (2FA) across the entire GitHub organization for your project on April 30th. This initiative is critical for safeguarding your projects.

It has come to our attention that 2 members of your project don't have 2FA enabled. We've just sent them an email to strongly encourage them to activate 2FA on their GitHub account before April 30th to avoid any disruptions in access. They also received instructions similar to the ones below about why and how they should enable 2FA. We strongly encourage you to follow up with them to ensure they have received the email and have taken the necessary steps to enable 2FA.

Why is 2FA important?
2FA adds an extra layer of security to ensure that individuals attempting to access an online account are who they claim to be. After entering their username and password, a user must provide another form of verification. This could be a code received via text message, an app on your smartphone, or a hardware security key. Enabling 2FA is nowadays a standard security practice across many platforms.

What happens if those members don't enable 2FA?
Failing to enable 2FA on their GitHub account by April 30th will result in temporary loss of access to the Eclipse Kiso-testing repositories. Consequently, they will be unable to push new code or merge pull requests. While they can still fork the repositories and work on their fork, direct contributions to the project repositories will be restricted until 2FA is enabled.

How to enable 2FA on their GitHub account?
GitHub provides detailed instructions for enabling 2FA. Should you need assistance, feel free to reach out to their support team. For any further questions or assistance in setting up 2FA, do not hesitate to open a ticket on our HelpDesk or comment on the ticket tracking this initiative.

Thank you for your cooperation and dedication to security.

Cheers!

The Eclipse Foundation Security Team

Eclipse Foundation: The Platform for Open Innovation and Collaboration



This message is for the designated recipient only and may contain privileged, proprietary, or otherwise confidential information. If you have received it in error, please notify the sender immediately and delete the original. Any other use of the e-mail by you is prohibited. Where allowed by local law, electronic communications with Accenture and its affiliates, including e-mail and instant messaging (including content), may be scanned by our systems for the purposes of information security, AI-powered support capabilities, and assessment of internal compliance with Accenture policy. Your privacy is important to us. Accenture uses your personal data only in compliance with data protection laws. For further information on how Accenture processes your personal data, please see our privacy statement at https://www.accenture.com/us-en/privacy-policy.
______________________________________________________________________________________

www.accenture.com

Back to the top