Skip to content

GitLab

  • Projects
  • Groups
  • Snippets
  • Help
    • Loading...
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in
Trac
Trac
  • Project overview
    • Project overview
    • Details
    • Activity
  • Issues 246
    • Issues 246
    • List
    • Boards
    • Labels
    • Service Desk
    • Milestones
  • Operations
    • Operations
    • Metrics
    • Incidents
  • Analytics
    • Analytics
    • Value Stream
  • Wiki
    • Wiki
  • Members
    • Members
  • Collapse sidebar
  • Activity
  • Create a new issue
  • Issue Boards

GitLab is used only for code review, issue tracking and project management. Canonical locations for source code are still https://gitweb.torproject.org/ https://git.torproject.org/ and git-rw.torproject.org.

  • Legacy
  • TracTrac
  • Issues
  • #6986

Closed
Open
Opened Sep 27, 2012 by David Fifield@dcf

Set up two-factor auth and app-specific password for email registration helper

Gmail has "application-specific passwords" that are intended to allow SMTP and IMAP programs to authenticate without using the main Gmail/Google Account password. For some reason, you can only set this up if you've enabled two-factor authentication.

We should do this because

  1. we can keep the master Gmail password offline, and only allow the facilitator access to IMAP under a different password. A breakin on the facilitator would not, for example, allow the intruder to set a new Gmail forwarding rule.
  2. We can revoke/rotate the IMAP password independently of the master Gmail password.
To upload designs, you'll need to enable LFS and have admin enable hashed storage. More information
Assignee
Assign to
None
Milestone
None
Assign milestone
Time tracking
None
Due date
None
Reference: legacy/trac#6986