this post was submitted on 20 Oct 2023
38 points (95.2% liked)
Privacy
31951 readers
1135 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
Chat rooms
-
[Matrix/Element]Dead
much thanks to @gary_host_laptop for the logo design :)
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
If your issue is with the authenticator, then why not just switch authenticators? I've been quite happy with Authy over the years.
Sure, self hosting can be more secure, but if it's not on your own hardware, I don't see how moving to render is better. You're still using a third party to host your most sensitive information.
Authy is lovely in that it just works, but it is hellacious to migrate off of if you change your mind.
I also don’t love that Authy is owned by Twilio, a communications/marketing service company.
This was my thought too. Why are you using Google Authenticator? It’s my understanding that it’s only required to use 2FA with Google specifically because, like Apple, they use their own system.
Just grab any authenticator, like Authy. Problem solved.
Authy is pretty bad. They had a data breach that exposed users, they make it really hard to migrate your secrets to another app (God help you if you lose your phone), and they're completely closed source.
The best option is probably Aegis Authenticator, but at least do a cursory search for "[authenticator name] controversy" before choosing an authenticator.
Thanks for the recommendation. I'll look into transitioning to Aegis. Regarding backups, you are able to have another device in case you lose your phone (I also have Authy on my laptop in case that does happen), but the data breach you mentioned said that may have been a weak point. Either way, I'm going to explore Aegis now.
I'll second Authy, I've never had any issues and it's simple in design which I like.