>your phone gets stolen or stops working
>can't log in to websites and emails that use 2FA
explain this retards. Why can't we have a KeePass-like database for 2FA which means that we could have the 2FA backed up to multiple devices incase our phone dies permanently
Just make a copy of the secret key
>his second factor is a phone
androidOTP can be backed up
KeepassXC accepts 2FA entries. Ideally keep then in a separate db.
now hold the fuck up
I currently use Red Hat's "FreeOTP" 2FA application on my lagdroid phone
can this be backed up or should I switch to one of your recommendations??????????????????????????????
Authy.
idk about that shit but I use KeepassXC + AndroidOTP + google drive sync
just werks
Up to you. The same totp code can be copied and pasted in both applications.
Is KeepassXC better than the normal one?
>explain this retards
Everything that supports 2FA will give you another way to log in if you lose your phone. Most give you a list of backup codes, which you should print out and store in a safe place. If you lose your phone, you can log in with a backup code to disable 2FA. Some don't have backup codes, but have other dubious backup methods, such as fallback to SMS 2FA (which is shit and insecure.)
Source: I broke my phone like an idiot, but I didn't lose access to any of my accounts.
>Why can't we have a KeePass-like database for 2FA
You can. KeePassXC supports TOTP, but it almost completely defeats the purpose of 2FA to store the TOTP codes in the same database as your passwords.
Mobile operating systems are more secure than desktop operating systems due to better privilege separation. It's less likely that a rogue app will steal all your TOTP codes on a mobile OS because they all tend to sandbox apps from each other. Also, a lot of phones come with hardware security modules that can encrypt your TOTP codes when the phone is locked. The only better option is to use a dedicated hardware security token (but don't buy YubiKey, the enemy of your freedom.)
Yes.
>>can't log in to websites and emails that use 2FA
Why would that be? Are you seriously telling me you have:
a) only one 2FA device added
b) don't have a backup of your 2FA setup?
You guys do know that Google Authenticator DB is just an SQLite file? You can just dump it into an csv file:
github.com
I maintain a CSV backup in my password-store.
>go to download KeePassXC
>it's Linux and MacOS only
it's for windows too.
I swear to god these open source developers just abandonging their documentation and website randomly
I will give KeePassXC a try even though I've been using KeePass for the last couple of years without problems
speaking of lazy FOSS retards, I read on FreeOTP's github site that they were "gonna implement backup functionality" (posted 25 july this year) but alas nothing has happened and the last commit to FreeOTP was like 2 years ago
Just tried KeepassXC, desu i liked Keepass UI's more
that wasn't my reply btw I have only downloaded the .exe just now
>complaining that free software isn't being developed fast enough.
Send them money.