this post was submitted on 02 Jul 2023
6 points (100.0% liked)
Chat
7499 readers
6 users here now
Relaxed section for discussion and debate that doesn't fit anywhere else. Whether it's advice, how your week is going, a link that's at the back of your mind, or something like that, it can likely go here.
Subcommunities on Beehaw:
This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Yes. Lemmy 2FA uses SHA256 TOTP digests, which are newer (and better) than the SHA1 digests used as default by most authenticator apps.
Critically, Lemmy will not have you verify that the generated TOTP code works before locking it in, nor will it give you backup codes.
You should check the documentation of your authenticator app to see if any changes need to be made in the app prior to adding Lemmy 2FA.
If your app only supports SHA1, or you fail to follow your app's procedures to add an SHA256 digest, and you add the 2FA token generated by Lemmy, you're not getting back into that account.
Link to GitHub issue about this