I switched to 2FAS.
You can’t export from FreeOTP. Ente doesn’t appear to be open source. Tofu is an option but I’m afraid it might not be maintained.
Edit: Use Ente. It’s the best option.
this post was submitted on 01 Aug 2023
84 points (98.8% liked)
Privacy Guides
17427 readers
98 users here now
In the digital age, protecting your personal information might seem like an impossible task. We’re here to help.
This is a community for sharing news about privacy, posting information about cool privacy tools and services, and getting advice about your privacy journey.
You can subscribe to this community from any Kbin or Lemmy instance:
Check out our website at privacyguides.org before asking your questions here. We've tried answering the common questions and recommendations there!
Want to get involved? The website is open-source on GitHub, and your help would be appreciated!
This community is the "official" Privacy Guides community on Lemmy, which can be verified here. Other "Privacy Guides" communities on other Lemmy servers are not moderated by this team or associated with the website.
Moderation Rules:
- We prefer posting about open-source software whenever possible.
- This is not the place for self-promotion if you are not listed on privacyguides.org. If you want to be listed, make a suggestion on our forum first.
- No soliciting engagement: Don't ask for upvotes, follows, etc.
- Surveys, Fundraising, and Petitions must be pre-approved by the mod team.
- Be civil, no violence, hate speech. Assume people here are posting in good faith.
- Don't repost topics which have already been covered here.
- News posts must be related to privacy and security, and your post title must match the article headline exactly. Do not editorialize titles, you can post your opinions in the post body or a comment.
- Memes/images/video posts that could be summarized as text explanations should not be posted. Infographics and conference talks from reputable sources are acceptable.
- No help vampires: This is not a tech support subreddit, don't abuse our community's willingness to help. Questions related to privacy, security or privacy/security related software and their configurations are acceptable.
- No misinformation: Extraordinary claims must be matched with evidence.
- Do not post about VPNs or cryptocurrencies which are not listed on privacyguides.org. See Rule 2 for info on adding new recommendations to the website.
- General guides or software lists are not permitted. Original sources and research about specific topics are allowed as long as they are high quality and factual. We are not providing a platform for poorly-vetted, out-of-date or conflicting recommendations.
Additional Resources:
- EFF: Surveillance Self-Defense
- Consumer Reports Security Planner
- Jonah Aragon (YouTube)
- r/Privacy
- Big Ass Data Broker Opt-Out List
founded 2 years ago
MODERATORS
You can export from freeOTP+ Its great. You can back up to another password manager by simply copying the shared secret also. But I don't think it's available for iOS. Oh well, if you want more freedom and privacy, you'll have to move to android.
Tofu is an option but I’m afraid it might not be maintained.
They made an annoucement 2 weeks ago about switching maintainer.
https://github.com/iKenndac/Tofu
2FAS
They only support iOS/iPadOS 16.4 or later.. no go for me
I was in the middle of switching 2FA over to Raivo from Apple Keychain and you drop this aaaaa-
I was for a while contemplating myself to switch to Raivo from 2FA 😂. Now I’ll stay put. 😇
The password manager for iphone or ios has mfa built in - seems to work ok. Its a bit annoying if you use a desktop thats not mac though and have to search for the mfa code among the millions of passwords.
True but like someone else mentioned here it’s not the best having all eggs in the same basket. If for eggsample 🙂 the apple account gets compromised it’s going to be hard.
Check this video from techlore.
Here is an alternative Piped link(s): https://piped.video/watch?v=25wG173PL3U
Piped is a privacy-respecting open-source alternative frontend to YouTube.
I'm open-source, check me out at GitHub.
Why are people switching away from Raivo?
/c/outoftheloop
Edit: Looks like it's been bought by a generic app developer about which there are few details to be found: https://discuss.techlore.tech/t/raivo-otp-authenticator-has-been-acquired/4962/2
Edit: After digging into 2FAS, I think it is now my top choice. Seems like more of a drop in replacement for Raivo. https://2fas.com/
My second choice is (as of this edit) Owky. I’ve not seen anyone talking about it, but it’s FOSS and has the ability to export your TOTP codes.
Im a little worried about it not being maintained though, since it’s a single developer.
https://apps.apple.com/us/app/owky-two-factor-authenticator/id1602245257
Other options I’ve considered:
Tofu Authenticator. Unfortunately it’s basic though and lacks the ability to export.
ente Authenticator. Account required, and I’m a little undecided on the company. Might be a serious option though.
I use Authy. It has Apple Watch app for quick access.
I have been using Authy as well. Works great in an apple ecosystem too.
Allows a quick copy from your phone to paste into computer browser when prompted for super easy usage.
Fan of OTP Auth
I‘m using Google Authenticator, but so far nobody else here seems to, am I doing it wrong??
I was going to ask the same question since I’m in the same boat.
I’m a fan of OTP Auth.
It’s been reliable, supports local and cloud backup / exporting, is simplistic in use and has a strong privacy policy.
So I'm not on iOS but... the websites I need to use for various work things all require that you use a specific authenticator. But they all choose a different random one. It drives me insane. I have 4 different apps. Google Authenticator, Authy, Duo Mobile, and Onelogin Protect. I pray I change jobs before I get a new phone.
Oh that's interesting. I know for my work, it says to use Google Authenticator, but I am still able to sign up with any app of my choice.
I realize there are exceptions to this, and you might fall into that category, but…
Most of the time when websites say they require a particular app, they actually don’t. Like if a website says to use Google Authenticator, you can actually use any TOTP app. There is even a workaround for using Steam’s TOTP without their app.
Don’t be scared to just try importing the QR or text based code into another app when you are signing up for a service. A functioning website won’t let you progress to the next screen without having the proper code in your app.
I’m a fan of 1Password. Makes it easy to keep all my secrets in one place, behind a yubikey.
1Pass auto fill of 2FA is so OP on desktop.
I love the family sharing features as well.
I have been using ProtonMail and Drive already so it was an easy decision to switch to Proton Pass when it came out. It's an all-in-one password manager which let's you store 2FA as well and also let's you make email aliases. It's synced everywhere, on Firefox on my linux desktop to my android phone to my iPad.
Apple Keychain OTP
Totp with bitwarden. Such a nice integration
I'm currently enjoying ProtonPass' built-in 2FA. You gotta be on a paid plan, however, but it's worth it imo.
Where are you keeping the 2FA code for your proton account? (Supposing you have it set up)
I keep that one in my iCloud keychain just out of convenience
I use Bitwarden for everything, including my totp codes. I should probably use a separate app solely for Bitwarden's totp code, but the danger of losing it all gives me such a rush!
load more comments
(1 replies)
What happened to Raivo?
They got bought out by Mobime.
I use keepassxc topt
None, just using the built in manager.
I’ve been using 1Password for years and love it. It’s multi-device support was one of the reasons I started using it, and now have a family subscription to share some things with my wife.
I rely on TOTP a lot for my IT job. With 1Password it’s easy to display them on my Apple Watch so I don’t need to keep opening the app on my phone or laptop.
I’m currently in the process of switching to 2fas. It seemed the best available alternative for me.
OTP Auth
The built in password manager and keychain can handle OTP since a few versions back.
I am undecided btw 2FAS and Ente. 2FAS has an excellent UI, but there is no desktop app. Ente requires an account, but it’s not a problem considering that everything is E2EE and it’s a company with good reputation.