So basically what title says.

Im using 2FA with google authenticator for multiple accounts. What if my phone gets stolen? Can I have some kind of backup? Or maybe sync with some self hosted service?

Bonus question: what 2FA should I use instead of google?

  • Dave@lemmy.nz
    link
    fedilink
    arrow-up
    4
    ·
    edit-2
    1 year ago

    For one, Aegis is more well known. Aegis has 6k+ stars where FreeOTP+ has about 500. This doesn’t mean it’s better, just that people are more likely to recommend it.

    Aegis also has more features, and can import from many different authenticator apps (though as many don’t allow exports, this may require technical knowledge to get the database and feed it in). If you have root then Aegis can pull directly from the other apps.

    Aegis claims they are better than FreeOTP because the encrypt passwords at rest.

    One big difference is FreeOTP+ lets you not have to enter a pin/password to see the codes while Aegis you need to enter a pin, password, or biometric to see your codes.

    • 𝕸𝖔𝖘𝖘@infosec.pub
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 year ago

      Popularity aside, you sold me on the import compatibility. FreeOTP+ can export to other FreeOTP+ installations, but I’ve had issues with exporting to other apps. I had to manually import using the secrets displayed within FreeOTP+. The encryption sold me. I will be migrating to Aegis. I haven’t heard of it until this post, and have been using FreeOTP+ sans encryption.