this post was submitted on 09 Jan 2024
145 points (95.0% liked)

Technology

58303 readers
13 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] flumph 24 points 10 months ago (4 children)

Spent an hour last night moving to 2FAS. Authy doesn't make it easy -- unlike their competitors, they don't offer an export feature.

[–] [email protected] 19 points 10 months ago* (last edited 10 months ago) (4 children)

2FAS

It launched an NFT based donation program: https://2fas.com/donate/

and it is not available on F-Droid.

I'd go with Aegis for an App on Android, or a Bitwarden/KeepassXC password manager which can both handle 2fa tokens too.

[–] Deebster 17 points 10 months ago (2 children)

I don't like the thought of having my passwords and 2FA live in the same place - that seems to miss the point a bit.

[–] [email protected] 10 points 10 months ago (1 children)
[–] Deebster 5 points 10 months ago

Ha, fair - and my desktop too, since I currently use the Authy desktop app. However, that's two different sets of credentials an attacker needs to steal/bypass, and two chances to stop them in time.

[–] [email protected] 2 points 10 months ago* (last edited 10 months ago)

You can have 2 different keys DB on keepassXC with different passwords, you can even try to save them in separate remote locations. The key points are data interoperability over different devices and its portability over different services, because the worst thing that can happen is that your favourite app, from where you cannot use or move your credentials elsewhere (like the Steam Guard app for instance), one day might stop working suddenly leaving you unable to access your accounts.

[–] [email protected] 5 points 10 months ago

If you use Linux then OTPClient works great with Aegis since it can open Aegis export files directly. I've set up Aegis to make an export whenever I change something, I sync the exports automatically to my PC, and I open them with OTPClient there.

OTPClient can ask for the export password each time you open it and will close itself automatically if it's not used for a while.

You can also use it to export the 2FA codes further in various formats, show the QR code for any of them, and all kinds of useful features like that.

[–] [email protected] 4 points 10 months ago

Aegis is great.

[–] [email protected] 1 points 10 months ago* (last edited 9 months ago) (1 children)
[–] [email protected] 1 points 10 months ago

You can download it straight from their GitHub, or presumably using Obtainium

yeah but F-Droid also insures the authenticity and reproducibility of the binary builds

[–] [email protected] 10 points 10 months ago

First thing I check before I commit to something: export feature.

[–] [email protected] 3 points 10 months ago

Yeah, this is going to be a pain in the ass. At least I have until summer.

[–] [email protected] 1 points 10 months ago (1 children)
[–] flumph 2 points 10 months ago

Literally went to every site in Authy and removed 2FA and then re-added it with the new app.