What 2FA app you recommend?
Ive got iPhone. Raivo was good until now
Moved to Raivo earlier this year and it’s great. Unfortunately it was just sold to a private company, so I’m looking for alternatives. From the replies here, might try 2FAs
Just started migrating to 2FAS from Raivo and Authy. So far so good.
For Android, I recommend Aegis [Play Store] [F-Droid]
For iOS, I recommend 2FAS [App Store]
For Linux, I recommend OTPClient [Flathub]
For BSD, either try compiling OTPClient from source, or use KeePass.
Aegis for android it’s the best , been using it for like 2 years now.
Undoubtedly Aegis for Android, because it has the easiest way to backup your codes. Excellent! And it is open source without internet connection.
Did anyone say Aegis?
I was going to say it but didn’t want to be the only one. I do recommend and use it though.
I say Aegis… He he, great app
I recommend KeePass and I encourage everyone to consider it given its platform-agnostic portable format. What happened to Raivo cannot happen to KeePass and its more of a universal solution as opposed to 1) Android: Aegis 2) iOS: Tofu or OTP etc.
All of those are very good apps but the problem remains that they all have their own peculiar/specific format that doesn’t necessarily play nice with any other app. KeePass is a convention/format that doesn’t really vary between implementations.
Edit: It also allows for choice in whether to keep it local or to safey sync in your choice of cloud service without exposing the contents unencrypted. If you don’t want to manage any of that, I would recommend Bitwarden and paying the $10 once and see if you’re still fine the next year without having to resubscribe if thats a problem for you.
The problem here would be storing your passwords along with your 2fa. You’re basically giving away every information needed to enter your accounts in case someone get access to your vault.
The best option would probably be using both KeePass and BitWarden. You store your passwords in one and your 2fa in the other.
Same. I pair it with KeePassium on iOS.
How can I use KeePassium with 2FA?
Just create an entry and at the bottom setup one time password OTP
Then scan a QR code or enter manually.
Then click the clock to the right of your entry to get the 6 digit code.
Thanks! I will try this. I never knew it existed
No worries. There’s instructions from KeePassium too if it helps.
KeePassXC supports the codes on desktop.
Aegeis, like everyone else here lol
Android is easy, Aegis.
IOS is much harder. Right now, probably “2FAs”. Authy is owned by Twilio, Raivo was just bought out by an advertising company, and the others are either too small to get the exposure required for any level of security or charge for the feature.
I’m out of the loop, why is Authy being owned by Twilio a bad thing?
It’s less that Twilio specifically owns it than problems resulting from corporate ownership. Briefly:
- You can’t get your data out of Authy. Actually you can, but it’s a long annoying process involving installing an out of date chrome extension and using developer tools.
- Privacy issues. Authy links a lot of data including location to your identity.
- Authy supports SMS account recovery (which is inherently insecure) and doesn’t allow users to disable it.
How do I transfer to aegis from authy?
I appreciate the info, thank you!
I’ve been using Aegis Authenticator for about two years now . It is free and open-source, and works as expected.
Aegis.
Yubikey authenticator
I’ve been happy with andOTP on Android.
It’s good. Just keep in mind that it hasn’t been updated in a while…
I hadn’t even noticed. With all the mentions of Aegis it looks like I was behind the times. Aegis was able to import my andOTP entries so I’ll give it a try.
I use keepassxc for both passwords and 2FA
2fas. aegis is great but it has no automatic google drive backup.
It does have automatic Android cloud backups and does support local backups, which also supports backing up to Nextcloud.
android cloud backups are unreliable.
They’re very reliable from my experience
deleted by creator
it doesn’t matter where it’s stored as long as it’s encrypted. Google obviously can’t look inside aes/password-encrypted backups
deleted by creator
deleted by creator