As we all know, Ravio has been removed from the recommended multi-factor authentication apps for iOS on PrivacyGuides.
As I want to export all my TOTP codes out of Ravio ASAP, what apps are you migrating towards? I know a few were mentioned such as:
• Tofu • Ente • 2FAS • FreeOTP • Bitwarden TOTP + Yubikey
I switched to 2FAS.
You can’t export from FreeOTP. Ente doesn’t appear to be open source. Tofu is an option but I’m afraid it might not be maintained.
Edit: Use Ente. It’s the best option.
Tofu is an option but I’m afraid it might not be maintained.
They made an annoucement 2 weeks ago about switching maintainer.
https://github.com/iKenndac/Tofu
2FAS
They only support iOS/iPadOS 16.4 or later… no go for me
I’ll be using BitWarden as my 2FA app. I use KeePass as my password manager so it would still be two different services/apps.
I was planning on using Tofu but it has no FaceID which is mandatory IMO.
Not on iOS but I like my yubikeys. Depending on your requirements (if you have less than 32 TOTP accounts per yubikey), they can handle your TOTP directly instead of just using them to unlock Bitwarden.
For security I don’t like to keep my TOTP keys in my password manager, even if it is strongly protected. With a yubikey I can ensure that both access to the key AND a physical touch is necessary to generate any codes. So even if I leave it plugged in on a remotely compromised PC I’m mostly protected, because a touch is required.
I guess why not use the yubikey for webauth instead of totp?
yeah, when sites support it, that’s definitely the best option, but many sites only barely do totp lol so I have to have to put the totp codes somewhere, and the yubikey handles it in a pretty nifty way
Gotcha. And I guess what backup method do you use? (Like a second YubiKey, recovery codes somewhere safe, a 2fa app discretely hidden)
mostly recovery codes. I have multiple yubikeys but that’s mostly for work
The password manager for iphone or ios has mfa built in - seems to work ok. Its a bit annoying if you use a desktop thats not mac though and have to search for the mfa code among the millions of passwords.
True but like someone else mentioned here it’s not the best having all eggs in the same basket. If for eggsample 🙂 the apple account gets compromised it’s going to be hard.
Check this video from techlore.
Here is an alternative Piped link(s): https://piped.video/watch?v=25wG173PL3U
Piped is a privacy-respecting open-source alternative frontend to YouTube.
I’m open-source, check me out at GitHub.
I just use Authy
I used to use them a while back but now I use Aegis. I prefer my 2fa offline and disconnected from the internet. I still keep my backups saved in safe spaces though. It served me well to get off of Authy too because last year, they got compromised.