beamflash, 18 days ago

@decryption https://www.token2.com/shop/product/molto-2-v2-multi-profile-totp-programmable-hardware-token

decryption, 18 days ago

@beamflash yeah that seems like the closest thing to what I want - any others out there?

beamflash, 17 days ago

@decryption 60 codes in https://shop.reiner-sct.com/authenticator/reiner-sct-authenticator?locale=en and I think it can scan qr codes

decryption, 17 days ago

@beamflash they all seem to be in the 50 euro + delivery price range - good to know they exist. I might try using a spare smartphone deGooglefied somehow and get it to sync automatically

wezm, 18 days ago

@decryption Only half joking: a Palm Pilot https://hachyderm.io/@knickish/112349440476749414

decryption, 18 days ago

@wezm lol i saw that and its what got me thinking - maybe I should just get a palm pilot (have they entered the used technology zone of being too old to be cheap?)

georgeharito, 18 days ago

@decryption @wezm I remember my Handspring Visor, I loved that thing, but it was just a toy for me as I was in uni and didn’t really use it for any serious work.

decryption, 18 days ago

@georgeharito @wezm hehe, I was the same with a HP iPAQ running Windows

froosh, 18 days ago

@decryption KeePass has a TOTP feature, 100% local and you can copy/sync the db however you want. Have as many dbs as you like to separate out passwords from totp, etc

decryption, 18 days ago

@froosh hmmm that’s not bad actually, just have a device dedicated to that perhaps

froosh, 18 days ago

@decryption though, you’d end up running a keepass app on a phone to access the codes (after catching up on the conversation, i see some kind of hardware would be good)

froosh, 18 days ago

@decryption some kind of esp32+oled+battery .. but then you’re back into creating a new thing and faffing around with it regularly :blobcatfacepalm2:

decryption, 18 days ago

@froosh yep, kinda want to avoid homebrew solutions, I'd probably fuck it up and lose all my TOTP keys or whatever

bling, 18 days ago

@decryption time to go back to RSA tokens? Even they need to be replaced when their batteries die, though.

decryption, 18 days ago

@bling i miss those, so simple

trib, 18 days ago

@decryption @bling I have an RSA token (my bank uses them for business customers). They replace them for you on 10-year cycles, I think. I'm on my second and opened the business in 2006.

duncan_bayne, 18 days ago

@decryption What sort of form-factor, and how much faff / DIY are you willing to entertain?

I ran Numberstation on my PinePhone for a while, and that was just fine.

You could run Numberstation or even totp-cli on almost any single-board computer ... maybe pair a Pi Zero with something like this:

https://www.amazon.com.au/2-13inch-Display-Raspberry-250x122-Paper-Like/dp/B09Q3P89JF

Pair it with something like this for control:

https://www.adafruit.com/product/512

decryption, 18 days ago

@duncan_bayne yeah something like this but less dicking around/DIY

duncan_bayne, 18 days ago

@decryption Yubikey then?

decryption, 18 days ago

@duncan_bayne I gotta see how practical it is - I think you still have to use their app to see the TOTP numbers?