From MozillaWiki
< BMO‎ | Meetings
Jump to: navigation, search
  1. [mcote] Official admin policy (for BMO/Recent Changes) on disabling 2fa and sec-group password resets
  2. [glob] discuss process for pushing sec fixes without 0day'ing upstream
    • justdave said they used to update the webheads directly, and sort things out once the upstream fix was released
  3. [glob] overview/demo of 2fa flow with token-bound state, and probably a rant about TINYTEXT