pass-otp
google-authenticator
Our great sponsors
pass-otp | google-authenticator | |
---|---|---|
22 | 24 | |
1,224 | 4,501 | |
- | - | |
0.0 | 0.8 | |
24 days ago | over 3 years ago | |
Shell | Java | |
GNU General Public License v3.0 only | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
pass-otp
- End of Life for Twilio Authy Desktop App
-
How do you sync your passwords?
otp tokens are included in the encrypted file. It’s just appended to the file, e.g. otpauth://totp/… You’ll need to install https://github.com/tadfisher/pass-otp on desktop for this to work. But the android client comes with support builtin.
-
Authenticator app advertising on App Store sends QR codes to developer
I use pass myself. I had no idea you could use it for otp. Are you using something like this? https://github.com/tadfisher/pass-otp
-
Twilio outage now 8 hours after laying off 27% staff
I use https://github.com/tadfisher/pass-otp with pass, which has a FOSS client for desktop and smartphone (at least for andriod, no idea for ios)
-
authenticator apps on Linux/Emacs commandline?
There are the password manager pass (https://www.passwordstore.org/), which has an extension pass-otp (https://github.com/tadfisher/pass-otp). This extension can be used instead of Google Authenticator.
-
Cryptopathic: The situation at LastPass may be worse than they are letting on
> In particular, I don't see how 2FA is possible with this
Umm, why not?
First, you can use a different app (like aegis) to generate OTPs.
Second, pass has an extension (https://github.com/tadfisher/pass-otp) that can be used to generate OTPs.
- A pass extension for managing one-time-password (OTP) tokens
-
Question about 'pass(wordstore)'
git clone https://github.com/tadfisher/pass-otpcd pass-otpsudo make install
-
GitHub to require two-factor authentication
You can use pass
google-authenticator
-
GitHub will disable non-2FA accounts?
otpauth:// is a de-factor standard, since Google Authenticator uses it: https://github.com/google/google-authenticator/wiki/Key-Uri-...
-
Creating 2fa with pyotp
Random question if you're using TOTP why not just give the user the secret when signing up as a Google Authenticator URI encoded in a QR code? Then you won't need to futz around with sending it to them afterwards. You can even use a library like qrcode.js so you don't generate the barcode server side either.
- why are all the totp secrets different styles?
-
Locker: Store secrets on your local file system.
Locker can generate Time Based OTP codes parsing TOTP urls stored under a special key named totp.
-
Does changing an email that has TOTP setup affect the "secret"?
(Examples> https://github.com/google/google-authenticator/wiki/Key-Uri-Format)
- Google Authenticator open source fork archived
- TOTP tokens on my wrist with the smartest dumb watch
- LastPass gehackt, Nutzerdaten aber anscheinend sicher
- Is google authenticator Private & Secure (Trustworthy) enough to be used for 2StepVerification?
-
Twilio, the people who own Authy, got hacked
If we're talking about the encrypted Authy TOTP secrets and IF they get cracked or guessed, Authy does store the email in the name of the item. Having the name, service and the secret within the QR code's URI is normal and the standard for TOTP. The only thing the hackers won't have is the password.
What are some alternatives?
gopass - The slightly more awesome standard unix password manager for teams
Aegis - A free, secure and open source app for Android to manage your 2-step verification tokens.
rofi-pass - rofi frontend for pass
pyotp - Python One-Time Password Library
Android-Password-Store - Android application compatible with ZX2C4's Pass command line application
keepassxc - KeePassXC is a cross-platform community-driven port of the Windows application “Keepass Password Safe”.
android-otp-extractor - Extracts OTP tokens from rooted Android devices
ios-application - A native, lightweight and secure one-time-password (OTP) client built for iOS; Raivo OTP!
two-factor-auth - Two Factor Authentication Java code implementing the Time-based One-time Password Algorithm
andOTP - [Unmaintained] Open source two-factor authentication for Android