04-02-2023, 02:43 PM
this is little bit offtopic of pine forums, but i think it interests some users. other kind of 2fa/mfa.
because of possible privacy issues, data collection and locking to close platforms, like google play and apple store, i don't usually like 2fa or mfa. two-factor-authentication or multi-factor-authentication is additional required policy for many services to getting in.
i found by coincidence a reasonable alternative, which can be used for 2fa/mfa systems. essentially, it has no privacy or data collection issues (assuming of usage). it is totp https://en.wikipedia.org/wiki/Time-based...e_password . it is based on time and correct timezone.
i initiated this on some services already, but i don't name those here, because of advertising. quite often, it is called an "authenticator app".
also hardware based totp devices are available, but might be cumbersome to be activated for service.
in debian, there is a package "oathtool". which can used by following, note -b is for base32.
there is graphical apps as well. base32 is usually a default instead of hex input. for oathtool, hex input is default.
many services require 2fa/mfa, and what annoys me is that those services require an app which is dependent on google play services or apple store. basically forcing closed platforms. totp was created somewhat long time ago, so it has been available as a possible choice already.
this is one example that i'm not necessarily against 2fa or mfa, it is more like, how it is implemented. and there are choices.
because of possible privacy issues, data collection and locking to close platforms, like google play and apple store, i don't usually like 2fa or mfa. two-factor-authentication or multi-factor-authentication is additional required policy for many services to getting in.
i found by coincidence a reasonable alternative, which can be used for 2fa/mfa systems. essentially, it has no privacy or data collection issues (assuming of usage). it is totp https://en.wikipedia.org/wiki/Time-based...e_password . it is based on time and correct timezone.
i initiated this on some services already, but i don't name those here, because of advertising. quite often, it is called an "authenticator app".
also hardware based totp devices are available, but might be cumbersome to be activated for service.
in debian, there is a package "oathtool". which can used by following, note -b is for base32.
Code:
watch oathtool --totp -b base32-coded-key-herethere is graphical apps as well. base32 is usually a default instead of hex input. for oathtool, hex input is default.
many services require 2fa/mfa, and what annoys me is that those services require an app which is dependent on google play services or apple store. basically forcing closed platforms. totp was created somewhat long time ago, so it has been available as a possible choice already.
this is one example that i'm not necessarily against 2fa or mfa, it is more like, how it is implemented. and there are choices.