[wp-trac] [WordPress Trac] #55514: 2FA by default for WordPress

WordPress Trac noreply at wordpress.org
Sat Apr 2 02:45:56 UTC 2022

#55514: 2FA by default for WordPress
 Reporter:  jamsec           |       Owner:  (none)
     Type:  feature request  |      Status:  new
 Priority:  normal           |   Milestone:  Awaiting Review
Component:  Security         |     Version:
 Severity:  normal           |  Resolution:
 Keywords:                   |     Focuses:

Comment (by jorbin):

 Hi @jamsec, welcome to trac.

 Related: https://make.wordpress.org/core/tag/two-factor/

 I couldn't find a relevant ticket, but @georgestephanis may know one. When
 including this in core has been discussed in the past, some of the
 hesitations has been around creating a system where users won't end up
 locking themselves out of their sites. @macmanx
 [https://make.wordpress.org/core/2015/12/11/2fa-2fa-2fa/ put it well]:
 > I’ll say it this way: We want users to be able to secure their sites
 with 2FA, not sit back and watch outdated abandoned sites pile up because
 they locked themselves out and simply give up when when we mention FTP,
 Database, or SSH.

 The #core-passwords room in slack, [https://wordpress.org/plugins/two-
 factor/ Featured Plugin], and [https://make.wordpress.org/core/tag/two-
 factor/ numerous make core posts] should be able to provide you with some
 more information.

Ticket URL: <https://core.trac.wordpress.org/ticket/55514#comment:1>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform

More information about the wp-trac mailing list