Just received this email from Sendgrid which i am using as SMTP for Discourse.
We are emailing to inform you of an upcoming requirement to update your SMTP authentication method with Twilio SendGrid to API keys exclusively by January 13th, 2021 in order to ensure uninterrupted email delivery service and improve the security of your account. Our records show that one or more users with this email address used your login credentials for your SendGrid SMTP configuration in the last 30 days. If you do not take action, your SMTP email delivery will be declined on January 13th, 2021.
Why API keys?
This is an effort to enhance security for all of our users. Using your account username and password for authentication is less secure than using an API Key. Unlike your username and password, API Keys are uniquely generated and can be set to limit the access and specify permissions for a given request.
What action is required?
Follow these steps to identify and replace your authentication method to API Keys for your SMTP configuration as well as any API requests and then implement Two-Factor Authentication (2FA) for enhanced security.
What happens if no action is taken?
On January 13th, 2021 we will no longer accept authentication with username and password, and we will be requiring 2FA to login to your account. If you attempt to authenticate your API requests or SMTP configuration with username and password for any of your users after that date, your requests will be rejected.
We’d like to thank you in advance for your prompt attention to these requirements. If you’d like to learn more about how you can enhance the security of your account, view this post. If you have any questions or need assistance, please visit our documentation or reach out to our Support team.
The Twilio SendGrid Team
Im using the defaults settings from the Discourse installation. Never made any custom changes.
Do i need to change anything?