A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn’t great, if contents of the website are behind a paywall maybe copy them into the post
- Don’t promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
Chat rooms
much thanks to @gary_host_laptop for the logo design :)
- 0 users online
- 57 users / day
- 383 users / week
- 1.5K users / month
- 5.7K users / 6 months
- 1 subscriber
- 2.96K Posts
- 74.6K Comments
- Modlog
Is there a FOSS 2FA app that syncs between Linux, MacOS and Android (using a self-hosted Server)?
Aegis? I use that
I don’t know about Mac OS but Bitwarden syncs just fine to my Android and Linux devices from my server.
Are you talking about the Bitwarden app mentioned here for 2FA specifically (because apparently it’s not very good) or the Bitwarden/Vaultwarden (backend) password managers (which are great)?
Bitwarden and Vaultwarden
Ente Auth.
Aegis is waaaay better
Hell yeah, I find Mauth as ditto to it.
I wish it had a desktop app. Id switch to it instantly.
No import? No scan qr code from image?
No export either, just Google Backups.
Also the feature roadmap looks bad. They don’t plan to add any of the features you’d expect from a standalone 2FA app, they just plan to sync with Bitwarden and eventually integrate completely with Workforce. So it looks like a bait and switch with no way to get your codes out.
Weird. If I copy the TOTP code from bitwarden into their 2fa app I get different codes. Not even after a rotation ( one isn’t ahead of the other ). That doesn’t seem right :/
TOTP is a defined standard, specifically RFC 6238.
But I still have 3 different apps on my phone so that I can get on to various customer VPNS. 🤷♂️
Because they use proprietary algorithms not TOTP.
Wait - so far its only the Microsoft MFA code that does it.
Microsoft MFA has the option of being set up (by admins) with either standard TOTP or with their proprietary algorithm.
If the admins for the realm you’re trying to use have chosen the proprietary one you need to use the Microsoft Authenticator app. Regular TOTP generators will accept the code but the code they make won’t work.
Can the regular Bitwarden generator make good codes? If so, it means they figured out (or were told by Microsoft) how the proprietary algorithm works. But since this standalone app is open source they couldn’t add that algorithm to it.
My main issue is that if I add the bitwarden TOTP secret string manually multiple times its generating different codes between the entries. Which seems like something that shouldn’t happen.
It is a different format to the other ones I’ve got though.
Fuck Microsoft authenticator though. Had to restore it to a new phones once and if you don’t do it on initial startup you can’t restore it at all. Good thing I had a secondary app that still had them. Absolute garbage.
What’s wrong with Aegis?
What’s wrong with alternatives?
Nothing, but this particular alternative is pretty awful. Literally zero features besides TOTP code generation, and they don’t plan to make it better. I really don’t understand why this app exists.
The only people who would possibly care about it is existing Bitwarden users who want to use it to hold the code for their Bitwarden account independently from account. But they say they plan to add Bitwarden sync to it so?..
Honestly it just looks like a super lazy attempt to draw people to Bitwarden (assuming it doesn’t turn into a sleazy attempt of holding codes captive with no way to get them out).
You can have synced authentication right now on their password manager, so unless they remove features I don’t think they will remove the waybto export codes from bw.