Email or username:

Password:

Forgot your password?
Joe's posts Post Back to profile
Top-level
Robbert

@walterburns @jzb @bitwarden
don't assume that their threat model is the same as yours.
i for example use multiple methods
some required a yubikey as 2fa
some have the totp in my password manager
some are in a standalone totp manager

and then ofcourse we have companies which force you to use their own 2fa which is incompatible with de standard(i'm looking at you authy)

24 September at 14:52 | Wall-to-wall | Open on mastodon.online
3 comments
Walter Burns

@mjrider For most people, TOTP is enough and security keys are not necessary. So - my advice applies to most and not all. I am aware.

24 September at 14:57 | Open on toot.community
Walter Burns

@mjrider And you really should not be using or even recommending Authy. If you need an app, @ente Auth comes highly recommended from most if not all experts on the matter.

24 September at 14:58 | Open on toot.community
Robbert

@walterburns
to make it abundantly clear, i only use authy because it is(or was) the only way to use 2fa with twilio.
i really think it's a bad solution for 2fa

24 September at 17:13 | Open on mastodon.online
Go Up