I have Authy 2.4.2 on Linux desktop (too recent for the --remote-debugging-port option used here to work) and Authy 24.13.6 on Android.
I use mostly the Android version, but sync to the Desktop / Chrome App was a nice backup. If they discontinue this I’m not sure what’s next and would prefer some Android app where I can access the backup. I have Bitwarden Pro if this helps, but my first concern is to get the tokens out of Authy.
I didn’t even realize they had a desktop app. I’ve been using the mobile app for a few years. I was just thinking about installing the mobile app in my WSA install, since it just didn’t even occur to me that there was a desktop version. I guess now it doesn’t matter either way.
I’ve started migrating all of my 2FA over to 2FAS. No desktop app per se, but it does have extensions for all major browsers, and apps for iOS and Android. You control the syncing of the 2FA (either automatically via Google Drive or via manual bulk exports to a local file), no SaaS bullshit.
Twilio is under a lot of pressure from shareholders eager for more profit (CEO was just pushed out), so I figure this is just the start of a long wave of enshittification. I switched to Authenticator Pro (Android), which is much better in every way. Can backup between devices, has WearOS support, and a proper dark mode. I’d use bitwarden, but I hesitate to keep my TOTP keys in same place as my passwords
That’s an awful decision by Twilo. I deliberately only install Authy on my Desktop computers because they’re always at home and cannot be easily stolen/lost like my phone.
Plugging pass/Password Store/Android Password Store for anyone wanting a good wrapper around git+pgp for desktop/Android using a YubiKey or similar hardware security key. It has pretty good OTP support built-in.
It may very well be, especially if the basket your eggs are in is full of holes. I always figure, as long as it isn’t a pad of paper on a desk, or a company that regularly makes headlines due to security breaches, I should be okay.
Which is damn near cheap compared to other companies. I personally use dashlane (I know I know I should self host but I don’t trust myself for something as important as passwords) and that’s $60 for their premium package.
It’s $10 annually in case you thought it was monthly. I’d imagine if you went in and subbed, then cancelled the sub, you’d still have your year you paid for. But yah, I’d like an option to not auto-renew, even though I do.
While that is true, the risk of someone brute forcing into an account of mine on the login side than on mine. That's what I use 2FA against. If they managed to break into my vault, they'd have broken into my Mailserver and whatnot, so....
You still need my(edit: I need mine, but you can use yours) phone but with the Firefox add-on you just need to accept the pushed notification for it to autocomplete the code
Thanks for the recommendation. Started working on migrating all of my 2FA over from Authy. The process sucks (that’s not the fault of 2FAS), but I really like 2FAS as an app so far.
Add comment