What is your stand on implementing Two-Factor Authentication to the fan page?
I personally do not need it because I use a unique and very secure password. But if fans think it is important and I can implement second-factor authentication
without linking against non-C libraries or using proprietary APIs then I can add it to my to-do list.
Not sure what your definition for "proprietary APIs" is...
Despite the name "
google authenticator" it's hardly proprietary.
This project's license is OSI approved "free / open source" and it's based on the "
OATH" standard which is
well known, documented, and able to be used with iPhone, android devices, blackberry, etc. etc. etc. without any modification. I myself use OATH (
google authenticator just happens to be a convenient implementation) on my own personal website, and it's good enough for mtgox as well. ((
citation / info: https://bitcointalk.org/index.php?topic=111943.0 <-- steps for explaining how it works on mtgox, and you can even use it without a phone or mobile device... the instructions in this thread are pretty good ))
This implementation is in C, and the only requirement is that your application support PAM
(
which is pretty standard & easy enough to add to pretty much anything, not just stuff written in C)