Hacker Newsnew | past | comments | ask | show | jobs | submit | DanCardin's commentslogin

this exactly. I was about to comment that (probably) unless this uses prompt-toolkit and works similarly to pgcli or mycli (both of which I use and love), Im gonna prefer them separate.

Awesome projects, thanks!


Wouldnt you have gotten unexpected 2fa notifications if that were the case?


This is true only if you use SMS for 2FA.

For either method, you can audit the activity of your account on the GitHub security page: https://github.com/settings/security. For example, upon having deliberately got my 2FA token wrong, "user.two_factor_requested" and "user.failed_login" events were logged for me.


Interesting, I'd never checked that log before, and I just noticed a failed login (though no two_factor_requested) from an IP address in Brazil.

I'm gonna change my password just in case.


Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: