I’ve been using Aegis Authenticator for about two years now . It is free and open-source, and works as expected.
deleted by creator
2FAS or Ente Auth.
Android is easy, Aegis.
IOS is much harder. Right now, probably “2FAs”. Authy is owned by Twilio, Raivo was just bought out by an advertising company, and the others are either too small to get the exposure required for any level of security or charge for the feature.
I’m out of the loop, why is Authy being owned by Twilio a bad thing?
It’s less that Twilio specifically owns it than problems resulting from corporate ownership. Briefly:
- You can’t get your data out of Authy. Actually you can, but it’s a long annoying process involving installing an out of date chrome extension and using developer tools.
- Privacy issues. Authy links a lot of data including location to your identity.
- Authy supports SMS account recovery (which is inherently insecure) and doesn’t allow users to disable it.
I appreciate the info, thank you!
How do I transfer to aegis from authy?
Yubikey authenticator
Authy or your preferred password manager
I also use authy, curious as to why I had to scroll so far to see it?
iOS Authenticator Open source no frills 2fa
Aegeis, like everyone else here lol
I use keepassxc for both passwords and 2FA
I’ve been happy with andOTP on Android.
It’s good. Just keep in mind that it hasn’t been updated in a while…
I hadn’t even noticed. With all the mentions of Aegis it looks like I was behind the times. Aegis was able to import my andOTP entries so I’ll give it a try.
Ive got iPhone. Raivo was good until now
Moved to Raivo earlier this year and it’s great. Unfortunately it was just sold to a private company, so I’m looking for alternatives. From the replies here, might try 2FAs
Just started migrating to 2FAS from Raivo and Authy. So far so good.
For Android, I recommend Aegis [Play Store] [F-Droid]
For iOS, I recommend 2FAS [App Store]
For Linux, I recommend OTPClient [Flathub]
For BSD, either try compiling OTPClient from source, or use KeePass.
Aegis for android it’s the best , been using it for like 2 years now.
BitWarden. :)
Then what do you use for your password manager?
I’ve always been of the mindset that storing your 2fa next to your passwords at least partially defeats the purpose of 2fa.
The two types of attacks I worry about would be a hacked/leaked password from a third party site, or your password manager being compromised. While the latter is far less likely, it is still something I’d like to protect myself from as much as possible.
If my password manager is compromised, I’m well and truly fucked. If one site has shitty security (odds of which are approximately 1), having 2FA might help.
This shouldn’t be the case. Using password manager shouldn’t mean you only have one password, it should mean you have less password to remember. I use password manager for all the insignificant pages/apps like lemmy, strava, netflix, spotify. If someone hacks them they can cancel my subscription and that’s about it. I don’t store password for my email, bank or amazon in my password manager.
I’m using BW for both passwords and 2FA and have Yubikey set up for BitWarden.
Aegis, even if some services won’t support it you’re better off not supporting those services.
Which services aren’t supported?
Las time I checked those that require a Microsoft or other propietary authenticator app that isn’t Google’s. They would force you to first use that propietary app and later export to Aegis. Correct me if I’m wrong, of course.
Just checked, you’re right about Google. Microsoft does allow you to use any app though. It’s funny that the “EEE” Microsoft is less anti-user than the “Don’t be evil” Google. But anyway, seeing how Google locks it down, I’m sure there must be others too. So you’re right
I was referring to other services requiring specific propietary authenticator apps. Many sites will be compatible with Aegis even if they don’t mention apps other than their own in their step-by-step guide. Have you tried? If it isn’t compatible through scan or manual code input the 2FA setup simply won’t finish.
