this post was submitted on 13 Feb 2024
68 points (98.6% liked)

Technology

59312 readers
4528 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

The Authy Desktop apps for Windows and MacOS that are available or were previously downloaded from authy.com/download as well as those for Linux will reach their End-of-Life on March 19, 2024

top 14 comments
sorted by: hot top controversial new old
[–] [email protected] 28 points 9 months ago

They've moved the EOL date up from August 19 to March 19. 5 fucking months out of nowhere. It used to be that companies would give EOL warnings a year or so in advance, but now I'm seeing "you've got a week bozo GG" more and more.

[–] [email protected] 9 points 9 months ago (3 children)

Anyone know how to export everything out of Authy on Android? I feel the end is in sight

[–] [email protected] 12 points 9 months ago

This is how I did it, using my Mac laptop. You can’t do it with the phone app, but a Mac or Windows computer can.

https://gist.github.com/gboudreau/94bb0c11a6209c82418d01a59d958c93

[–] [email protected] 4 points 9 months ago

You can't do it. Authy's FAQ page says it's for security reasons or whatever. I moved to Aegis a bit ago and had to do them one by one.

[–] [email protected] 0 points 9 months ago

Unfortunately not.

[–] [email protected] 4 points 9 months ago (1 children)

Time to find a replacement, I guess.

[–] [email protected] 3 points 9 months ago* (last edited 9 months ago) (3 children)

I'd look for one that also does passwords. And passkeys too, since that's looking like it will replace TOTP.

Since like it or not you're going to have three credential systems to deal with, at least have all of them in one place.

[–] [email protected] 4 points 9 months ago

Since like it or not you're going to have three credential systems to deal with, at least have all of them in one place.

Not the best idea for security

[–] [email protected] 3 points 9 months ago

Bitwarden is by far the best answer. 👌👍

[–] [email protected] 1 points 9 months ago* (last edited 9 months ago) (1 children)

Keepass can do all, though TOTP support is not exactly what I'd call streamlined. Still works well nevertheless.

Edit: unsure of passkey when I think about it now, but worst case someone will make a plugin for them I guess...

[–] [email protected] 2 points 9 months ago* (last edited 9 months ago) (1 children)

My only issue with these tools is that you're putting both your passwords and the 2fa in one basket.

[–] [email protected] 2 points 9 months ago

That is true, though you could keep your password and totp databases separate theoretically. I'm not sure if keeping them in say separate apps brings much benefit if your phone/pc gets compromised though, as most people would have both available on their device... totp is more about convince, it's never as secure as a hardware thing say yubikey.

[–] [email protected] 2 points 9 months ago (1 children)

Freeotp+ allows you to export your Codes só you can back them up or import them again

[–] [email protected] 1 points 9 months ago

Aegis does as well. I haven't looked at freeotp but the feature I liked about Aegis is there is no sync or recovery feature vulnerable to simjacking, like Authy was.

I wonder when they'll improve the shit MFA they've got on their Sendgrid product... it was heavily tied to Authy.