this post was submitted on 01 Aug 2023
159 points (97.0% liked)

Selfhosted

40160 readers
544 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
 

For example, something that is too complex for your comfort level, a security concern, or maybe your hardware can’t keep up with the service’s needs?

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 5 points 1 year ago (2 children)

Aegis. Never use a local-only 2FA app on your phone.

[–] okamiueru 10 points 1 year ago* (last edited 1 year ago) (1 children)

What's the problem with it being local-only? Just backup the secrets, and you're good? Or is backing it up the "online" element?

[–] [email protected] 2 points 1 year ago (1 children)

Like a password manager, I can't trust myself for the seeds to get misplaced.

[–] [email protected] 11 points 1 year ago* (last edited 1 year ago)

First, that's what recovery codes are.

Second, that's what backups are for.

Frankly, given what we've seen with LastPass this past year alone, there is absolutely no one I would trust to host any of my credentials.

My TOTP seeds go in a Keepass database that has a very long passphrase. That database is then sync'd across devices with syncthing and included in encrypted backups.

[–] [email protected] 2 points 1 year ago (2 children)
[–] [email protected] 2 points 1 year ago (1 children)

Authy, having paid bitwarden and 2FA in one app is a disaster waiting to be happen in case of a security breach.

[–] lastweakness 1 points 1 year ago (1 children)
[–] [email protected] 1 points 1 year ago (1 children)

Out of all hosted options available that I lasted tested 2-3 years back, Authy is the only one that reliably syncs and backups seeds across devices. I would switch in an instant if something like Bitwarden comes up but for 2FA only.

[–] lastweakness 3 points 1 year ago

Why not just use Aegis with a remote backup?