Scalable compute services.
Simple object storage.
Run managed Kubernetes clusters.
Tools & Integrations
Automate your infrastructure.
Deploy pre-built applications.
Connect, share and learn
DevOps and development guides
Questions & Answers
Development and systems Q&A
by Justin Ellingwood
Create the ability to whitelist IPs that are able to login to digitalocean. If you login from an unknown IP send an email to reject or deny access.
My fingerprint changes on every login due to an adblocker being used and my own personal VPN. Every single time, I get an email to verify it's me, and I don't like 2FA on my phone. Whitelisting IP addresses is not rocket science... people do that all the time, on servers administration to unlock access to sensitive administration areas.
It's my responsibility to whitelist an IP address, which should bypass your "verify that it's you" emails and fingerprinting stuff.
Great suggestion and we will certainly add it to the consideration list as we begin to review the public access that users have to their accounts and what steps we can do to add layers of security to that.
Moving this to planned for discussion.
2FA creates a single point of failure. By giving the user the ability to white list only their IP (Static) then you can rest easy knowing that the account is only accessible from a few locations. I need this for four locations all of which I have proof that we have static IPs.
Any customer that wants white-listing enabled, must prove from their ISP or their profile must have a consistent three to six month login from the same IP(s) that they have static IPs. DHCP IPs will only cause more support tickets.
Where does this stand now? It seems every time I login from a new computer it voids the old IP.. ? I rotate between 3 computers frequently, would be nice if trusted IP's/ logins could be bumped up just a bit.
You won't be notified about changes to this idea.