this post was submitted on 02 Dec 2023
130 points (98.5% liked)
Asklemmy
44122 readers
566 users here now
A loosely moderated place to ask open-ended questions
Search asklemmy ๐
If your post meets the following criteria, it's welcome here!
- Open-ended question
- Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions. Assume best intent and be excellent to each other.
- Not regarding using or support for Lemmy: context, see the list of support communities and tools for finding communities below
- Not ad nauseam inducing: please make sure it is a question that would be new to most members
- An actual topic of discussion
Looking for support?
Looking for a community?
- Lemmyverse: community search
- sub.rehab: maps old subreddits to fediverse options, marks official as such
- !lemmy411@lemmy.ca: a community for finding communities
~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Aegis is a FOSS, local only 2 factor TOTP generator. Essentially a Google authenticator without the Google.
I feel like KeePass is a preferable portable format that you can do everything any TOTP app can do without being tied into non-standard apps. Like .kdbx is a standard that works in any KeePass app
I'd be concerned about storing both authentication factors in the same location, maybe if you kept passwords in one db and passwords in another. Not sure how well mobile apps support multiple dbs though
Local to the Device? Google already did that to me. Then my phone died and I had the world's worst time trying to convince some of my vendors that I really was me. Like, I had to get my ID notarized in person and sent that paperwork off by international post in one example.
I wouldn't want to go through that drama again. I moved to Authy, they keep my tokens encrypted on a cloud service. I could potentially be convinced to move to something self hosted, but never local-only again.
Aegis can do automatic encrypted backups to a cloud provider or locally.
That's why you back up your shit.
Authenticator Pro works with my Samsung Wear OS watch. I get the codes on my watch instead of switching between apps on my phone to get codes.
Aegis is what I have used for 2fa for quite some time now, but I think I should also mention Authenticator Pro . The feature set is similar to Aegis and, it's got a design that some people may find attractive.
P.S: It also has Wear OS support, so that you can see 2fa codes from your watch (I can't tell how well this feature works as I don't own any wearable devices)