I was surprised to discover disroot provided for authentication by password alone.
Sonebody could acquire my password from my keystrokes and share my account with me and there seems no way to know.
It would be great to provide two factor authentication. It would also be very FOSS to provide for authentication by PGP key. I’m sure there are other options too.