• @Armand1@lemmy.world
    link
    fedilink
    English
    283 months ago

    This prompted me to move away from Authy, and looking it up, it doesn’t allow you to export your TOTP tokens. There were some workarounds but then have been plugged, I tried.

    Mostly switched over to Bitwarden’s equivalent. I’ve been using their password manager for many many years now and am very happy with it. They have an export feature in a few different formats.

    • @rekabis@lemmy.ca
      link
      fedilink
      English
      63 months ago

      I only ever used Authy as a single-item TOTP vault for BitWarden, but I moved off of it long before they ever mentioned the Windows app shutdown due to dissatisfaction with the UI. I just didn’t like their “card-like” interface, and they never offered a super-compact list-like interface. The card interface just wasted too much screen real estate, even on a desktop, and it just got immeasurably worse under mobile.

    • @retro@infosec.pub
      link
      fedilink
      English
      63 months ago

      The work around did work however you needed to download an older archived version that was unpatched.

      • @Armand1@lemmy.world
        link
        fedilink
        English
        63 months ago

        Yeah, I did that, but then it refused to let me log in, telling me the version was not secure or something.

        Older versions appear to refuse to talk with their servers, at least that was the case for me.

  • Boozilla
    link
    fedilink
    English
    213 months ago

    What are some good multi-platform alternatives/ replacements?

      • Beej Jorgensen
        link
        English
        173 months ago

        I switched to Aegis when google authenticator didn’t allow exports. It’s simple and it works.

    • @mosiacmango@lemm.ee
      link
      fedilink
      English
      16
      edit-2
      3 months ago

      Keepass. Standalone FOSS apps for desktop/phone. Has OTP support.

      Password/tokens are stored in a small encrypted db file you can copy/paste anywhere you need it. Has hundreds of plugins to do various things.

      Use something like syncthing/nextcloud/onedrive to keep the file in sync across devices.

    • @Eezyville@sh.itjust.works
      link
      fedilink
      English
      93 months ago

      I use KeePassXC and a Yubikey 5. You can store a certain number of 2fa on the key but i also back up the secret key and recovery codes on KeePassXC which is backed up on my Nextcloud. When using the Yubikey there is an app on desktop and mobile that reads they key but doesn’t store the codes. Open the app, plug in the key, the TOTP appears, take the key out and the TOTP is gone.

    • @BakedCatboy@lemmy.ml
      link
      fedilink
      English
      8
      edit-2
      3 months ago

      I like using bitwarden, the selfhosted vaultwarden server stores it with passwords and makes codes available in the app / browser extension. I also keep them backed up on a nas and synced off-site just in case.

      • @batcheck@lemmy.world
        link
        fedilink
        English
        23 months ago

        1Password has impressed me. I’ve used KeePassXC, LastPass, Bitwarden (but not extensively and one of the early versions), and even CyberArk (🤮).

        1Password is closed source but it’s one of those pieces of software that just works the way you expect it to. Hard to confirm a lot of their security claims. Just rolling with “Have not heard a lot about 1Password breaches” mentality.

        We got lucky at work and used it to replace an unmanageable long list of KeePass database files that were sprawling everywhere. With that everyone who uses 1Password at work gets an associate private family account. Made managing my kids passwords and share some of our common family passwords way easier and I still get to lock them out of my passwords I don’t want them using.

        I believe modern Bitwarden for enterprise has a similar licensing sweetener with a private family account for each corporate account.

      • @mosiacmango@lemm.ee
        link
        fedilink
        English
        2
        edit-2
        3 months ago

        AndOTP is great. Its free and had simple and easy encrypted backups. I love how its timer counts down, not up like some others and highlights the token in red so you know you need to hustle or wait.

    • @Damage@feddit.it
      link
      fedilink
      English
      43 months ago

      I switched to Ente Auth some time ago when bad news about authy started getting out

      • Anas
        link
        fedilink
        English
        13 months ago

        Same here, have no problems so far.

    • Fubarberry
      link
      fedilink
      English
      33 months ago

      A lot of password managers support 2fa now. I use Enpass because I got a lifetime license a long time ago (it’s also available to people with Google Play pass), but I know some other popular options have it too.

      • @BorgDrone@lemmy.one
        link
        fedilink
        English
        133 months ago

        The whole point of 2FA is to keep the second factor separate from the first. If you store both in the same password manager app that defeats the entire point of 2FA.

        • @hikaru755@lemmy.world
          link
          fedilink
          English
          203 months ago

          It still protects you from your passwords being compromised in any way except through a compromise of the password manager itself. Yes, it’s worse than keeping them separate, but it’s also still much better than not having 2fa at all.

        • Pika
          link
          fedilink
          English
          13 months ago

          I only switched to keepass due to the fact that nothing seems to support a desktop application like authy did. Not everyone keeps a phone on them 24/7. If they don’t want that risk they would allow desktop apps. least in my opinion

      • Pika
        link
        fedilink
        English
        1
        edit-2
        3 months ago

        this is what I did, syncthing syncs the DB across all my devices(including my phone), and it uses a certificate key + password for the master. It lets me secure all my stuff in one location without having to mess with my phone.

        I know it’s less secure but, nobody has a desktop app anymore, so I would rather just have it all in one place then have to dedicate another mobile app for it.

  • 0^2
    link
    fedilink
    English
    103 months ago

    Welp, time to finally migrate one at a time to Proton.

    • @EngineerGaming@feddit.nl
      link
      fedilink
      English
      133 months ago

      That would be repeating the same mistake. You don’t change one company for the other, you choose an app that is not dependent on an account, like KeepassXC.

      • 0^2
        link
        fedilink
        English
        13 months ago

        I moved from keepassxc to bitwarden then to proton pass when it was released. I’m not going back. I keep my recovery codes separate to prevent a complete lockout. But thanks for the suggestions.

  • @fubarx@lemmy.ml
    link
    fedilink
    English
    8
    edit-2
    3 months ago

    Just spent a week manually moving everything off Authy. Total pain, but there are lots of better solutions out there now.