So basically what title says.
Im using 2FA with google authenticator for multiple accounts. What if my phone gets stolen? Can I have some kind of backup? Or maybe sync with some self hosted service?
Bonus question: what 2FA should I use instead of google?
Use Aegis on android or 2FAS on iOS. And just backup your seed on hdd/usb stick. Dont upload on cloud.
Thx, looks perfect!
Thank you all for tips. I got Aegis and backing it up to my selfhosted nextcloud. I will also keep google app in use for now, but I might get keypassxc or vaultwarden in the future
Cheers
I use Authy and am logged in on multiple devices so if I lose my phone I can still access the 2FA on my laptop. Then log back into the new phone using the laptop.
Authenticator Pro is awesome, FOSS, and allows you to backup your 2FA.
Aegis or Ente Auth for Android. Backup your databases in your cloud of choice. Do not use Google Authenticator.
Keepass + Syncthing
KeepassDX is a good android client, and it supports TOTP.
Just transfer them to another device? Or save the big QR code it generates as an image.
I prefer an authentication code, which I can save on a pendrive or, if not, a second email. I never use 2FA with a phone number, precisely because a phone is never secure and is also a privacy hole. It’s enough that they know my email, it’s not necessary that they also know my phone number.
Who knows my phone number if I use Aegis?
All you need is the TOTP secret, and it will generate OTPs. If you enter the secret in another TOTP app, you’ll also get OTPs. Here’s a Ruby lib that will render OTPs from a secret, for example: https://github.com/mdp/rotp
For an Android TOTP tool, I like FreeOTP+. You can even use it for Steam OTPs.
I use 1pass at work and vailtwarden personally. Both are perfect solutions.
Im using bitwarden free for passwords only. I might try vaultwarden
You could use a python script with oathtool copied onto each of your devices. This is not a good suggestion.
I uses https://authy.com/
Separat from my passwords
Just a heads up. There is no way to export from authy. So if you ever want to switch apps for whatever reason, lets say they were bought by big evil corp., then you would have to go and regenerate all your keys. Where as a good app would let you export and import from anywhere
Yep took me several days to transfer all the logins to Aegis
lets say they were bought by big evil corp
Is this an intentional joke? (I often miss jokes so I am asking seriously)
Authy was bought ages ago by Twillio, which also owns Segment (customer data platform)… So Twilio may not be all that big, but they’re fairly big players in the tracking and ads space. Which I loathe.
I’m in this thread because I want to move away from Authy for this very reason.
An unintentional one it would seem. Had no idea. Thanks for highlighting this.
