Senjutsu

What 2FA app are you switching to? (iOS)

https://lemmy.one/post/1512945

What 2FA app are you switching to? (iOS) - Lemmy.one

As we all know, Ravio has been removed from the recommended multi-factor authentication apps for iOS on PrivacyGuides. As I want to export all my TOTP codes out of Ravio ASAP, what apps are you migrating towards? I know a few were mentioned such as: • Tofu • Ente • 2FAS • FreeOTP • Bitwarden TOTP + Yubikey

Aug 1, 2023 at 4:30amWeb
Show threadThiefAug 1, 2023
The password manager for iphone or ios has mfa built in - seems to work ok. Its a bit annoying if you use a desktop thats not mac though and have to search for the mfa code among the millions of passwords.
Show threadweedwhackingAug 1, 2023
iCloud Keychain is available as a chrome extension now, works on windows too. Hopefully Firefox is in the works
Show threadMilarepa_07Aug 4, 2023

True but like someone else mentioned here it’s not the best having all eggs in the same basket. If for eggsample 🙂 the apple account gets compromised it’s going to be hard.

Check this video from techlore.

www.youtube.com/watch?v=25wG173PL3U

Stop iPhone Data Thefts Now!

YouTube
Show threadNightAuthorAug 1, 2023
I just use Authy
Show thread/home/pineappleloverAug 1, 2023

I used to use them a while back but now I use Aegis. I prefer my 2fa offline and disconnected from the internet. I still keep my backups saved in safe spaces though. It served me well to get off of Authy too because last year, they got compromised.

techcrunch.com/2022/08/26/twilio-breach-authy/

TechCrunch is part of the Yahoo family of brands

Show threadMagneticFusionAug 1, 2023
Aegis is Android only
Show threadHughJanusAug 1, 2023

I prefer my 2fa offline and disconnected from the internet.

That’s great until you lose your phone or something…

Show threadb9chompsAug 1, 2023
Well, that’s what backups are for. I sync my Aegis backups between phone, tablet and PC via syncthing. It’s convenient to have authy handle bwckups for me, but if I use 2fa I don’t want to water down its usefulness right away.
Show threadHughJanusAug 1, 2023
Yeah I tried that. Couldn’t figure it out.
Show threadunbuckledAug 1, 2023
I switched to 2FAS.
Show threadwhysofuriousAug 1, 2023

Ente Auth seems open source: github.com/ente-io/auth

But the need for account is trowing me off a little bit. I’ll give a try to 2FAS as well.

GitHub - ente-io/auth: 2FA app for Android, iOS and web, with free end-to-end encrypted backup and sync

2FA app for Android, iOS and web, with free end-to-end encrypted backup and sync - ente-io/auth

GitHub
Show threadsir_whocampsalotAug 1, 2023
From ente Authenticator launch blog post, they do state it is open-source.
Show threadopt9Aug 2, 2023
You can export from freeOTP+ Its great. You can back up to another password manager by simply copying the shared secret also.
Show threadhumuhumuJun 14, 2024

Tofu is an option but I’m afraid it might not be maintained.

They made an annoucement 2 weeks ago about switching maintainer.

github.com/iKenndac/Tofu

2FAS

They only support iOS/iPadOS 16.4 or later… no go for me

GitHub - iKenndac/Tofu: An easy-to-use two-factor authentication app for iOS

An easy-to-use two-factor authentication app for iOS - iKenndac/Tofu

GitHub
Show thread/home/pineappleloverAug 1, 2023
I recommend Raivo or Tofu both open source and I believe you can save and export it somewhere else to backup.
Show threadMagneticFusionAug 1, 2023
You did not read his post did you?
Show threadnevernevermoreAug 1, 2023

Hi, could you please recommend to me something that isn't x

Have you tried x?

Show threadweedwhackingAug 1, 2023
I honestly have been loving iCloud Keychain. I’m pretty all-in Apple though, if I was more multi plat I would move to 2FAS
Show threadANIMATEKAug 1, 2023
I’m not a big fan of putting all your eggs in one basket. If for whatever reason your Apple account gets compromised, you’re utterly fucked lol.
Show threadweedwhackingAug 1, 2023
Yeah this was something I considered when I moved over. But between the advanced data protection feature and my technical savvy I decided the convince was worth it because chances of my account getting compromised are very very very very low
Show threadweedwhackingAug 1, 2023
Convenience* lol
Show threadGutless2615Aug 1, 2023
Fan of OTP Auth
Show threadwillyaAug 1, 2023
None, just using the built in manager.
Show threadDeflectedBullhornAug 1, 2023

My top choice current is Owky. I’ve not seen anyone talking about it, but it’s FOSS and has the ability to export your TOTP codes.

Im a little worried about it not being maintained though, since it’s a single developer.

apps.apple.com/us/app/…/id1602245257

Other options I’ve considered:

Tofu Authenticator. Unfortunately it’s basic though and lacks the ability to export.

ente Authenticator. Account required, and I’m a little undecided on the company. Might be a serious option though.

‎Owky: Two-Factor Authenticator

‎Owky is a free and open source Two Factor Authentication (2FA) application, which generates Time-based One-Time Passwords (TOTP). Two Factor Authentication is an effective and simple way of protecting your internet accounts. Owky will generate a code Two-Factor code which you can use together of you…

App Store
Show threadCotillionAug 1, 2023
I switched to 2FAS but im also looking into Proton Pass since im subscriber (password manager + 2FA) but i dont want to put all my eggs in one basket. Atm im using proton pass for unimportant stuff.
Show threadkuroshidoAug 1, 2023

I’m a fan of OTP Auth.

It’s been reliable, supports local and cloud backup / exporting, is simplistic in use and has a strong privacy policy.

Show threadSkaveRatAug 1, 2023
Totp with bitwarden. Such a nice integration
Show threadb9chompsAug 1, 2023
I’m curious. I know Bitwarden or keepass can handle TOTPs, but can’t I unlock your Bitwardenvault and have access to your password and 2fa code? Or do they have protection against it?
Show threadSkaveRatAug 1, 2023
yes, that’s the downside of it. You can add additional password requests for some things, but not sure if it works for 2FA. (basically: if you want to use this resource, unlock the vault, but also additionally request the password again)
Show threadcaglelAug 1, 2023
I use Authy
Show threadbluesydneyAug 1, 2023

I have been using Authy as well. Works great in an apple ecosystem too.

Allows a quick copy from your phone to paste into computer browser when prompted for super easy usage.

Show threadom1kAug 1, 2023
I use keepassxc topt
Show threadConfettiAug 1, 2023
You could always make a kdbx file for all of your totp seeds only and use an editor for ios, like keepassium or strongbox.
Show threadkennochaAug 1, 2023
I’m a fan of 1Password. Makes it easy to keep all my secrets in one place, behind a yubikey.
Show threadnaviAug 1, 2023

1Pass auto fill of 2FA is so OP on desktop.

I love the family sharing features as well.

Show thread10EXPAug 1, 2023
I was in the middle of switching 2FA over to Raivo from Apple Keychain and you drop this aaaaa-
Show threadMilarepa_07Aug 4, 2023
I was for a while contemplating myself to switch to Raivo from 2FA 😂. Now I’ll stay put. 😇
Show threadCarlCookAug 1, 2023
OTP Auth
Show threadI need NOSAug 1, 2023

Why are people switching away from Ravio?

/c/outoftheloop

Show threadsir_whocampsalotAug 1, 2023
I assume you mentioned yubikey because you have one. In that case move your 2FA codes to bitwarden, as then you could use your yubikey on bitwarden itself. Can’t store the keys to your safe in your safe now can ya haha
Show threadHellfire103Aug 1, 2023
I like Tofu, and I also quite like Authenticator, but so far 2FAS seems to be the only option that offers backups without an account and that isn’t a full-blown password manager.
Show threadMax17Aug 1, 2023
I’m using the microsoft Authenticator, is it bad?
Show threadGogo SempaiAug 1, 2023
I have been using ProtonMail and Drive already so it was an easy decision to use Proton Pass. It’s an all-in-one password manager which let’s you store 2FA as well and also let’s you make email aliases. It’s synced everywhere, on Firefox on my linux desktop to my android phone to my iPad.
Show threadMatricariaAug 1, 2023
Apple Keychain OTP
Show threadgooglesnarfenAug 1, 2023
I‘m using Google Authenticator, but so far nobody else here seems to, am I doing it wrong??
Show threadLoopingRiverAug 1, 2023
I was going to ask the same question since I’m in the same boat.
Show threadweedwhackingAug 1, 2023
Considering googles track record with privacy I would hesitate to use it
Show threadBrikoXAug 2, 2023

They make it hard to export your seeds if you want to move to the other platform or new device + closed source.

On Android Aegis is the great alternative. On iOS Raivo OTP used to be the main recommendation, but they just got bought by relatively unknown company, which is sketcy in on itself.

Aegis Authenticator

Aegis Authenticator is a free, secure and open source app for Android to manage your 2-step verification tokens for your online services.

Show threadTonyTonyChopperAug 1, 2023
So I’m not on iOS but… the websites I need to use for various work things all require that you use a specific authenticator. But they all choose a different random one. It drives me insane. I have 4 different apps. Google Authenticator, Authy, Duo Mobile, and Onelogin Protect. I pray I change jobs before I get a new phone.
Show threadSenjutsuAug 1, 2023
Oh that’s interesting. I know for my work, it says to use Google Authenticator, but I am still able to sign up with any app of my choice.
Show threadDeflectedBullhornAug 3, 2023

So most of the time when websites say they require a particular app, they actually don’t. Like if a website says to use Google Authenticator, you can actually use any TOTP app. there are even workaround for using Steam’s TOTP without their app.

Don’t be scared to just try importing the QR or text based code into another app when you are signing up for a service. A functioning website won’t let you progress to the next screen without having the proper code in your app.

I realize there are exceptions to this, but hopefully you can merge some of the of apps you using into just 1 or 2?

Show threadIphtashuFitzAug 1, 2023

I’ve been using 1Password for years and love it. It’s multi-device support was one of the reasons I started using it, and now have a family subscription to share some things with my wife.

I rely on TOTP a lot for my IT job. With 1Password it’s easy to display them on my Apple Watch so I don’t need to keep opening the app on my phone or laptop.

Show threadmeseek #2982Aug 1, 2023
The built in password manager and keychain can handle OTP since a few versions back.
Show threadPlissken185Aug 1, 2023
I’m currently in the process of switching to 2fas. It seemed the best available alternative for me.
Show threadporscheAug 2, 2023
iCloud Keychain does everything I need and is built in.
Show threadopt9Aug 2, 2023
Recommending iCloud keychain in a privacy forum??
Show threadteolanAug 2, 2023
It’s actually pretty good security-wise, the main issue is that it completely locks you into the Apple ecosystem, while other 2FA apps and password managers are all cross-platform.
Show threadopt9Aug 5, 2023
Good security-wise, maybe. But who protects you from Apple? They have access to everything they so conveniently sync for you for free. That is neither secure nor private. The same goes for Google. People don’t understand how much of your stuff they have access to.
Show threadprivacyfalcon9899Aug 2, 2023
I am undecided btw 2FAS and Ente. 2FAS has an excellent UI, but there is no desktop app. Ente requires an account, but it’s not a problem considering that everything is E2EE and it’s a company with good reputation.
Show threadrelevantnananaAug 2, 2023
What happened to Raivo?