this post was submitted on 21 Aug 2023
30 points (94.1% liked)

Privacy

31996 readers
597 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

Hi guys

What 2FA for iOS would you recommend after Raivo OTP been sold?

all 29 comments
sorted by: hot top controversial new old
[–] willya@lemmyf.uk 7 points 1 year ago (2 children)

What keeps you from using the built in support?

[–] Supertramper@feddit.de 5 points 1 year ago

From a security perspective, unlocking your third-party password manager AND your 2FA authenticator on the same phone with FaceID is not the best solution. An attacker who manages to compromise FaceID will have access to your credentials as well as your 2FA codes.

That’s why I recommend a separate 2FA app with a custom 6-digit pin lock.

[–] ultratiem@lemmy.ca 4 points 1 year ago

This. 2FA is totally supported by iOS’s default password manager.

[–] Raisin8659@monyet.cc 6 points 1 year ago (2 children)

Try 2FAS. Open-sourced. Also works on Android. Has a browser extension that allows automatic 2FA entry paired with a phone.

OTH, if you need a Windows client, then Authy may be the way to go. Need to religiously copy the TOTP secret (when setting up) and save it somewhere else, though. Because it doesn't officially allow export, it might be a bitch to move to other authenticators.

[–] badgrandpa@lemmy.world 3 points 1 year ago

Open-sourced, which still collect some data, I wish to have Aegis in iOS. At the moment I'm between OTP Auth and 2FAS.

[–] FarLine99@lemm.ee 0 points 1 year ago
[–] skv@lemm.ee 5 points 1 year ago (2 children)

Protonpass, it’s free, opensource and supports multiple platforms as well.

[–] Harrison@infosec.pub 4 points 1 year ago (1 children)

From what I can see on their website, the 2FA feature is only available if you pay $1/month. No gratzie.

[–] skv@lemm.ee 1 points 1 year ago

Just seen it lol, and now I cant access my 2FA unless I pay, remember seeing in their website 2FA as part of free plan. Shame it isn’t. Apple keychain it is then for me.

[–] Kwa@derpzilla.net 3 points 1 year ago (1 children)

I’ve just checked it, but it seems the 2FA is only available with the paid subscription. Or am I misunderstanding something?

[–] kryllic@programming.dev 1 points 1 year ago

This is correct

[–] hellfire103@sopuli.xyz 5 points 1 year ago (1 children)

Go for 2FAS. It's FOSS and quite similar to Raivo. It's also now the 2FA client recommended by Techlore.

[–] NENathaniel@lemmy.ca 2 points 1 year ago

Yea 2FAS is my fav on both iOS and Android

[–] Eggyhead@artemis.camp 2 points 1 year ago

I can’t recommend Raivo. One day I opened the app to find all my codes just… gone. It was like the app updated and was behaving like a new installation. I had made a backup, but I apparently assigned it a password I didn’t know. I switched to 2FAS and had to visit all my sites to create new tokens for each one. 2FAS hasn’t inexplicably deleted my tokens as of yet so I think I’m safe now.

[–] nix@merv.news 2 points 1 year ago

Wow I didn’t know it was sold. Just exported my backup from it and gonna search for a new one.

[–] ebits21@lemmy.ca 2 points 1 year ago

I just use KeePassium with a keepass database (with just totp in it).

I used to use Authy but I like to control my own data.

[–] Technoprenerd@infosec.pub 2 points 1 year ago (1 children)

Try Ente Auth, End to End encrypted and easily store 2FA codes.

https://ente.io/blog/auth/

[–] DuckGuy@lemmy.zip 1 points 1 year ago

That's what I'm using. It works as expected and is multi-platforms so I'm happy with it.

[–] Bladerunner@lemm.ee 2 points 1 year ago (1 children)

I’ve been using authy for years

[–] badgrandpa@lemmy.world 2 points 1 year ago

is secure, but for privacy not best option

[–] simon@lemmy.utveckla.re 2 points 1 year ago

I use Authy. I tried to migrate to using a Yubikey, but the Yubikey 5 NFC which I have has a limit of 32 TOTPs and I need to store more than that.

[–] nachtigall@feddit.de 1 points 1 year ago* (last edited 1 year ago) (1 children)

What happened to Raivo?

Edit: nvm found it

Let’s see what happens

[–] Veilttevstead@lemmy.world 10 points 1 year ago* (last edited 9 months ago) (2 children)
[–] Harrison@infosec.pub 1 points 1 year ago

Clearly it will be monetized in some way. Otherwise why would they have bought it?

[–] Harrison@infosec.pub 1 points 1 year ago* (last edited 1 year ago)

I just tried "2FAs", which seems to be the most recommended free one. It failed to import any 2FAs from the Raivo export with 7 digits, but otherwise worked fine. Problem is it failed to import silently, didn't give any errors, which was offputting. Using it for now, but Raivo was better software. Pouring one out.

[–] TCB13@lemmy.world 0 points 1 year ago (1 children)

I'm amazed nobody suggested Tofu (https://www.tofuauth.com/) that is simple, efficient and true open source.