this post was submitted on 01 May 2024
512 points (97.4% liked)

Technology

59652 readers
4818 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

Bitwarden Authenticator is a standalone app that is available for everyone, even non-Bitwarden customers.

In its current release, Bitwarden Authenticator generates time-based one-time passwords (TOTP) for users who want to add an extra layer of 2FA security to their logins.

There is a comprehensive roadmap planned with additional functionality.

Available for iOS and Android

you are viewing a single comment's thread
view the rest of the comments
[โ€“] penquin@lemm.ee 14 points 6 months ago (3 children)

Does this save to my cloud account with them or is it only local? I got screwed over by Aegis (my fault) when I got a new phone and forgot to back up Aegis and lost a lot of my logins. Some of them I can't get unless I call the company and verify it's me ๐Ÿคฆ๐Ÿฝโ€โ™‚๏ธ

[โ€“] sugar_in_your_tea@sh.itjust.works 12 points 6 months ago (4 children)

Do backups kids. :)

I actually keep an authenticator app on my desktop, so I always have two places for everything. Aegis on my phone and "Authenticator" on my Linux desktop.

[โ€“] Plopp@lemmy.world 6 points 6 months ago

Wait, I'm a second child, am I a backup kid?

[โ€“] akilou@sh.itjust.works 4 points 6 months ago (2 children)

Then how do you secure the backup without 2FA?

Or is it 2FA all the way down?

[โ€“] GustavoFring@lemmy.world 4 points 6 months ago

You could store it on an external drive. You can encrypt it with VeraCrypt as well.

[โ€“] sugar_in_your_tea@sh.itjust.works 1 points 6 months ago (1 children)

Aegis encrypts it with a password, then you copy it somewhere. It's just a set of keys and you can have as many copies as you want (I have three, one phone and two desktops).

[โ€“] akilou@sh.itjust.works 1 points 6 months ago (1 children)

Aegis doesn't run on your desktop using the same key, it's just a key stored there, right?

No, I use a different authenticator app (called Authenticator in the Flatpak store), but it does use the same keys. So I import the keys from an Aegis dump so I can generate exactly the same keys on my desktop app that I do on my phone.

TOTP is a really simple system, as long as I have access to the secret key and a reliable time source, I can generate the exact same tokens as any TOTP app would.

[โ€“] penquin@lemm.ee 1 points 6 months ago

I backup everything, but Aegis

[โ€“] acetanilide@lemmy.world 1 points 6 months ago (1 children)

How do I do the backup for Aegis? I looked at it and it's set up but then at the bottom it says no backups have been made ๐Ÿค”

[โ€“] sugar_in_your_tea@sh.itjust.works 5 points 6 months ago (1 children)

Settings > Import/Export > Export

This dumps it to a file, then it's on you to copy it somewhere else.

Or

Settings > Backups

I think this one is automated, but I personally don't use it, I just back it up manually when I add something new. I keep a completely functional 2FA app on my desktop, so I always have a backup in a pinch.

[โ€“] lemmyingly@lemm.ee 2 points 6 months ago (1 children)

Aegis does automatic backups. I guess you didn't turn it on?

[โ€“] penquin@lemm.ee 1 points 6 months ago (1 children)

Guess I didn't. I hate me even more now

[โ€“] lemmyingly@lemm.ee 1 points 6 months ago (1 children)

The penguin is dead ๐Ÿ˜‚

[โ€“] penquin@lemm.ee 1 points 6 months ago (1 children)

๐Ÿ˜‚ I guess it is. Damit

[โ€“] lemmyingly@lemm.ee 1 points 6 months ago (1 children)

I spelled your username wrong. I thought the q was a g. ๐Ÿ˜‚

[โ€“] penquin@lemm.ee 1 points 6 months ago

I don't care. It's meant to be a penguin with a q.

[โ€“] misanthropy@lemm.ee 2 points 6 months ago

Yubikey and yubico authenticator is king. Just need multiple keys. Stick it in a PC or tap it on your phones nfc.. bam totp code pulls up.