Page MenuHomePhabricator

ElHef
User

Projects

User does not belong to any projects.

Today

  • Clear sailing ahead.

Tomorrow

  • Clear sailing ahead.

Friday

  • Clear sailing ahead.

User Details

User Since
Jul 9 2019, 5:53 PM (126 w, 21 h)
Availability
Available
LDAP User
Unknown
MediaWiki User
ElHef [ Global Accounts ]

Recent Activity

Dec 25 2020

ElHef added a comment to T270823: Reset 2FA for User:KCVelaga on OTRS-wiki.

Hmm, who can revoke OTRS 2FA? Does it require shell access?

Dec 25 2020, 2:47 PM · Znuny, Trust-and-Safety

Sep 19 2020

ElHef updated the task description for T263328: Agents can view watched tickets outside of assigned queues.
Sep 19 2020, 5:40 PM · Znuny
ElHef added a comment to T263328: Agents can view watched tickets outside of assigned queues.

This worked in the past on OTRS 5 with e.g. oversight queues. I assumed it
was deliberate - the most sensitive part of a ticket is almost always going
to be the first article and in this case the agent has already seen it.

Sep 19 2020, 5:30 PM · Znuny
ElHef added a comment to T263328: Agents can view watched tickets outside of assigned queues.

In OTRS 5 you could do the same thing with certain queues. I had a ticket get moved to permissions and I could still view and interact with it.

Sep 19 2020, 5:13 PM · Znuny
ElHef created T263328: Agents can view watched tickets outside of assigned queues.
Sep 19 2020, 5:00 PM · Znuny

Sep 18 2020

ElHef added a comment to T122220: Enable optional two-factor authentication for OTRS.

As another issue I see with this, the shared secret stays openly viewable in my preferences after being set. It's right below the password change fields, which ask for a 2FA token (presumably as a security check). Rather defeats the purpose of asking for that if you can just grab the secret and generate a code...

Sep 18 2020, 7:10 PM · Security, Znuny

Sep 17 2020

ElHef added a comment to T122220: Enable optional two-factor authentication for OTRS.

I was able to set it up in Google Authenticator without issue and it seems to be behaving. (Wouldn't let me log in with a blank or wrong code, and did let me log in with the right one.) It is somewhat confusing and fairly easy to mess up though. Agree with previous comment about documenting and communicating about the blank 2FA field when logging in. Manual entry of the shared secret seems like it would be fairly easy to accidentally brick your account, especially since I'm not seeing anywhere that it generates scratch codes.

Sep 17 2020, 12:35 PM · Security, Znuny

Sep 16 2020

ElHef added a comment to T122220: Enable optional two-factor authentication for OTRS.

As would I, just say the word

Sep 16 2020, 4:07 PM · Security, Znuny

Jul 9 2019

ElHef updated ElHef.
Jul 9 2019, 5:56 PM