Wunderbar...
#Datev empfiehlt Leuten für die Einrichtung den invasiven #GoogleAuthenticator für ganz normales #TOTP.
Und der tolle Authenticator erlaubt es einem nicht, das Secret zu exportieren und woanders, zB. in #Aegis oder #KeepassDX zu verwenden.
Und ausschalten kann man TOTP auch nicht?
MFA🛡️🔐📱: a camada de segurança que sua senha não tem https://youtube.com/shorts/CWPW5VblQ-I?feature=share
#MFA #SegurancaDaInformacao #Microsoft365 #IdentidadeDigital #DicaTech #AdminTI #TI #CibersegurancaBrasil #MicrosoftEntraID #ZeroTrust #FIDO #TokenSMS #WindowsHello #MicrosoftAuthenticator #GoogleAuthenticator
Proton Authenticator
As more and more of our important personal data is stored online and more and more hacks of corporate databases make that data available to the worst people, the need for added security on our online accounts has grown considerably. It’s no longer enough to have a secure, hard to crack password. We now need to enable two-factor/multi-factor authentication (2FA/MFA). These services allow you to use something you have, such as your smartphone, along with something you know, in this case your […]
Why the FUCK won't #GoogleAuthenticator allow sorting the list?
I have 19 entries, two phone screens full, and basically have to read through the entire list every time I need a code.
El lado del mal - Cómo exportar tus TOTPs de Latch a Google Authenticator https://elladodelmal.com/2025/08/como-exportar-tus-totps-de-latch-google.html #Latch #GoogleAuthenticator #TOTP #2FA #Identidad
¿Alguien utiliza TOTPs? Yo utilizo #googleauthenticator pero como estoy en ese camino de desgooglearme estoy buscando alternativas.
Desde el sitio wed de #disroot mencionan un par pero uno, #andOTP parece ya no tener su página en #fdroid, y el otro que es #FreeOTP+ no se ha actualizado desde el 2024. Igual estos los he chequeado desde el repositorio por default de F-Droid así que todavía no he visto en otros repos.
Pero bueno, quienes usan TOTPs ¿Cuáles usan o cuáles recomiendan?
Parece que no es posible importar las claves de #GoogleAuthenticator en #Aegis si no tienes el móvil rooteado, salvo quizás haciendo cosas muy raras con emuladores en un portátil o usando dos dispositivos y escaneando códigos QR de uno en uno.
Pero quizás no sea mala idea empezar de cero y que tus códigos 2FA no estén en poder de Google.
If you are like me, then you might have installed the #GoogleAuthenticator app, back in the days when it was the only solution out there for #TOTP #2FA.
But that is long ago. Since then, #Google has closed-sourced it's solution, forced #cloudsync otto it's users and stores these information unencrypted; plus it's suspected to collect even more data from you than needed. And it's a US BigTech company.
I've looked into a couple of alternatives and landed with #Aegis and #EnteAuth which are both excellent #free #opensource choices from #europe. I went with @ente because of it's larger platform support.
So why are you not already using an alternative? It's super easy, and took me less then 10 minutes:
1. On GoogleAuthenticator go to the ☰
2. Select transfer codes
3. Select all the codes you want to transfer --> Google will create a number of QR-Codes, each containing 10 accounts.
On your alternative say import, and scan the Google codes and you're good to go and can let go of yet another proprietary US BigTech dependency (and thus liability).
If you are already using a different #TOTP #2FA app on your smartphone, which one is it, and why?
Bin ich eigentlich der einzige, der ständig #GoogleFotos ↔ #GoogleAuthenticator verwechselt?
Die sehen einfach sehr gleich aus.
(Und: nein, die sind bei mir nicht direkt nebeneinander, hab ich nur für den Screenshot so arrangiert)
日本の銀行とかカード会社、証券等の金融機関って #googleauthenticator は使うわけにいかないんかな。独自のやつだと簡単に不具合起きる。
アカウント紐付けでもないから復旧も手間だし。
Googleもアカウント紐付け前はログインできなくなった時の復旧コードとかも必要だったけど出来るようになって加えて #MicrosoftAuthenticator に同時登録でかなり安心して使えるようになった。
じゃあパスキーの導入かなと思うがこっちだって全然進んじゃいない。
まあ今は検証段階かもしれないけど。
#2FA-siirto etenee: #Firefox siirretty #googleauthenticator'ista #Aegis'iin, #PyPI Aegisiin ja #Yubikey'hin. #atkjuttuja
On multiple sites my #2FA codes from #GoogleAuthenticator on #Android are now only accepted in roughly the first half of the code window. After that I have to wait until the rollover to a new code. This is very frustrating. Authenticator has almost no settings, certainly nothing to resync the clock. Should I assume it's a configuration issue with the target sites and notify them?
Protip: En #DaleCoopeuch no es obligatorio usar #GoogleAuthenticator , cualquier Generador de tokens TOTP sirve.
Google Authenticator 7.0: novità e miglioramenti
#2FA #Aggiornamento #Android #App #Google #GoogleAuthenticator #iOS #MaterialYou #Miglioramenti #Notizie #Novità #NuoveFunzioni #Sicurezza #Tecnologia
https://www.ceotech.it/google-authenticator-7-0-novita-e-miglioramenti/
As I got a new phone, I'm looking for a secure alternative to #GoogleAuthenticator
Because AFAIK it stores "seeds" in cleartext, and I try to #degoogle step by step.
I seem to remember a website which listed (#Android) #Security Tips (I this it was a .sh TLD domain)
So two questions:
Edit: It could be that the website was https://book.hashbang.sh/ but it doesn't have anything about Google AUthenticator 😞
Como recuperar os códigos do Google Authenticator em outro celular
https://fed.brid.gy/r/https://tecnoblog.net/responde/como-recuperar-contas-google-authenticator/
Ok, I'm going to fully admit I'm not entirely sure how to use #YubicoAuthenticator amongst multiple #YubiKeys vs, say, #Authy or #GoogleAuthenticator after a year+ of off/on looking to try it out.
Do I need to store the #TOTP seeds on every #YubiKey I own? And they all take up a slot? If so, I'm glad for most high value ones, I've been saving encrypted copies of the initial secret key in my password manager. Is that the way it works, all stored in the keys, and not some DB on each device?
A very special Fuck You to #Google #Googleauthenticator which has such vile dark patterns that all my OTP generation codes are now "backed up" to the cloud
Under my work account no less, even though it's not the default on that device and I most certainly didn't want that
If that happens to me with a single stray click, to how many other does it happen without them realizing?
Let's not mince words here: This reduces the security of my "two factor" to near zero. Fuck everyone involved in this
Meine gestrige Session "Praxistipps zur sicheren #Authentifikation" auf #hackmas ist bereits als Aufnahme online: https://media.ccc.de/v/praxistipps-zur-sicheren-authentifikation
#FIDO2 #Passkeys #TOTP #OTP #GoogleAuthenticator #Security #Sicherheit #TAN #CardTAN #Passkey
Ich habe eben zwei Sessionvorschläge für #hackmas eingereicht:
https://sessions.hack-mas.at/
Mal sehen, ob ich die Erwähnung von #vim in meinem #orgmode-Vorschlag bereue. 😈
#Emacs #Authentifikation #TOTP #FIDO2 #Passkeys #2FA #MFA #Passwörter #Sicherheit #GoogleAuthenticator #Authentifizierung #PIM
