twofactorauth
authelia
twofactorauth | authelia | |
---|---|---|
12 | 174 | |
3,340 | 19,719 | |
0.5% | 2.5% | |
9.4 | 9.9 | |
8 days ago | 1 day ago | |
Ruby | Go | |
GNU General Public License v3.0 or later | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
twofactorauth
-
Find which accounts could support 2FA
FYI: Sites that provide 2FA may or may not be listed in https://github.com/2factorauth/twofactorauth
-
All your SMS are belong to us
Using the 2fa.directory as a start, I recently went searching for banks that specifically support MFA via hardware or software tokens. Almost all are non-US based which shows how far behind the US financial industry is w/r MFA. I found one, First Tech Federal Credit Union, which supports software tokens using the Entrust IdentityGuard app. They support business and personal accounts and you can apply online.
- The twofactorauth[.]org site has been taken over
- Ask HN: What Happened to Twofactorauth.org?
-
Best site that provided a list of sites with two factor authentication (2FA) support
Further information that the domain was sold by one of the contributors due to a dispute - https://github.com/2factorauth/twofactorauth/issues/5238
-
Where did the list of 2FA websites go? I cannot find it anymore
See: The twofactorauth[.]org site has been taken over #5238
-
Daily Fi Discussion Thread Wednesday February 17
That said, where possible, 2FA should not rely on a phone number. SMS and Voice are unauthenticated and unencrypted. It's easy and cheap enough to setup a stingray to grab all text messages in an area, and SIM swap attacks are also typically pretty easy (difficulty varies by provider from incredibly simple to might require calling back a few times to get the right rep). Switch to an authenticator app for anything that supports it (https://twofactorauth.org/).
-
Is 2FA too risky?
I backup my seed data every account that has 2FA/MFA support (see https://twofactorauth.org/) into Keepass. It's fairly simple to do. I use a program like Windows' Snipping Tool to capture the QR code displayed by the new 2FA-based service and I save the file as an attachment into my Keepass on the password entry for the 2FA-based service. I also use a QR code reader that deciphers the QR code and then I save that URI string into Keepass as well, extracting the TOTP seed data and also using the KeePassOTP or other KeePass plug-in to allow me to generate TOTP codes directly from my Keepass vault files on either my PC or Android devices.
-
Security Reminder to turn on MFA and use strong passwords on your accounts
Also https://twofactorauth.org/ to check which of your sites have it as an option.
-
10 SIM Swappers Arrested for Stealing $100M in Crypto from Celebrities
It's absolutely unacceptable. A visit to https://twofactorauth.org/ will quickly either dash or build your hopes for the future of online security, depending entirely on what country you live in.
authelia
-
Keycloak SSO with Docker Compose and Nginx
It's me and two others though I'm definitely the most active. We put a lot of effort into security best practices and one of my co-developers is currently reviewing the 4.38.0 release. It's a fairly major release with a lot of important code paths that have been improved for the future.
Our official docs can be found at https://www.authelia.com and you can find docs for a particular PR in the relevant PR. We've also linked the pre-release docs in the pre-release discussions which can be found here: https://github.com/authelia/authelia/discussions/categories/...
-
Protecting WebUI on public IP?
I use NGINX proxy with Authelia in between. Authelia blocks and blacklists faulty logins.
-
Why would anyone need AD/AAD when you can manage devices through Saltstack?
https://github.com/saltstack/salt https://github.com/chocolatey/choco https://github.com/nextcloud https://github.com/authelia/authelia https://github.com/grafana/grafana
- Give this project some luv: Single Sign-On Multi-Factor portal for web apps
-
HAProxy with Forward Auth to Authentik
If you are using HAProxy on PfSense/OPNSense, see my issue https://github.com/authelia/authelia/issues/2696
- Keycloak – Open-Source Identity and Access Management Interview
-
LDAP or AD for selfhosted
https://github.com/lldap/lldap is a very simple and lightweight LDAP solution. Works flawless with https://www.authelia.com/
-
Authelia/SSO With Caddy In Docker Compose?
Ah yeah, so I guess it's been a while since I tried and I forgot where I got stuck last time. Authelia's config.yml is absolutely massive and I'm not sure which section of their guide I should be following. In The Docker Compose section, there's "Unbundled", "Lite", and "Local". I think I want to be running the "lite" bundle, but their example compose file has a ton of Traefik stuff in it. I know I wouldn't keep the Traefik services, but do I need either secure or public?
-
How do you secure your webpages that have no protection?
Authelia supports SSO. If you are behind a reverse proxy it’s quite straightforward to integrate.
-
GitLab behind Authelia
This should probably also be mentioned in the documentation so maybe consider mentioning this on their discussion page.
What are some alternatives?
KeePassOTP - Add OTP support (two factor authentication) to KeePass
authentik - The authentication glue you need.
twofactorauth - List of sites with two factor auth support which includes SMS, email, phone calls, hardware, and software. [Moved to: https://github.com/2factorauth/twofactorauth]
Keycloak - Open Source Identity and Access Management For Modern Applications and Services
awesome-runners - A curated list of awesome self-hosted GitHub Action runners in a large comparison matrix
oauth2 - Go OAuth2
Bitwarden - The core infrastructure backend (API, database, Docker, etc).
oauth2-proxy - A reverse proxy that provides authentication with Google, Azure, OpenID Connect and many more identity providers.
TwoFactorAuth.Net - .Net library for Two Factor Authentication (TFA / 2FA)
Nginx Proxy Manager - Docker container for managing Nginx proxy hosts with a simple, powerful interface
PatternFly - This repo contains core (HTML/CSS) implementation for PatternFly. Issues related to CSS/HTML and layout should be filed here.
dex - OpenID Connect (OIDC) identity and OAuth 2.0 provider with pluggable connectors