Hi guys

What 2FA for iOS would you recommend after Raivo OTP been sold?

    • Supertramper@feddit.de
      5·
      1 year ago

      From a security perspective, unlocking your third-party password manager AND your 2FA authenticator on the same phone with FaceID is not the best solution. An attacker who manages to compromise FaceID will have access to your credentials as well as your 2FA codes.

      That’s why I recommend a separate 2FA app with a custom 6-digit pin lock.

  • Harrison@infosec.pub
    1·
    1 year ago

    I just tried “2FAs”, which seems to be the most recommended free one. It failed to import any 2FAs from the Raivo export with 7 digits, but otherwise worked fine. Problem is it failed to import silently, didn’t give any errors, which was offputting. Using it for now, but Raivo was better software. Pouring one out.

  • ebits21@lemmy.caEnglish
    1·
    1 year ago

    I just use KeePassium with a keepass database (with just totp in it).

    I used to use Authy but I like to control my own data.

    • DuckGuy@lemmy.zip
      1·
      1 year ago

      That’s what I’m using. It works as expected and is multi-platforms so I’m happy with it.

  • skv@lemm.ee
    21·
    1 year ago

    Protonpass, it’s free, opensource and supports multiple platforms as well.

    • Kwa@derpzilla.net
      2·
      1 year ago

      I’ve just checked it, but it seems the 2FA is only available with the paid subscription. Or am I misunderstanding something?

    • Harrison@infosec.pub
      1·
      1 year ago

      From what I can see on their website, the 2FA feature is only available if you pay $1/month. No gratzie.

      • skv@lemm.ee
        1·
        1 year ago

        Just seen it lol, and now I cant access my 2FA unless I pay, remember seeing in their website 2FA as part of free plan. Shame it isn’t. Apple keychain it is then for me.

  • Raisin8659@monyet.ccEnglish
    0·
    1 year ago

    Try 2FAS. Open-sourced. Also works on Android. Has a browser extension that allows automatic 2FA entry paired with a phone.

    OTH, if you need a Windows client, then Authy may be the way to go. Need to religiously copy the TOTP secret (when setting up) and save it somewhere else, though. Because it doesn’t officially allow export, it might be a bitch to move to other authenticators.