Same here. That’s what I’m using right now. KeepassXC can store one time password codes, which gives you control. Having a phone app store them is daft. Having an online service like Google store them is even more daft.
If you want more security you can have a Yubikey store the secret data and use their one time password app (runs on all major OSs) to generate the codes.
The one time password code standard allows you to keep your secret codes in non secure ways, and it lets you keep them in highly secure ways (like a dedicated one time password device). It’s up to you. No one thinks one time passwords are non secure just because you’re allowed to use them in non secure ways.
Same here. That’s what I’m using right now. KeepassXC can store one time password codes, which gives you control. Having a phone app store them is daft. Having an online service like Google store them is even more daft.
If you want more security you can have a Yubikey store the secret data and use their one time password app (runs on all major OSs) to generate the codes.
The one time password code standard allows you to keep your secret codes in non secure ways, and it lets you keep them in highly secure ways (like a dedicated one time password device). It’s up to you. No one thinks one time passwords are non secure just because you’re allowed to use them in non secure ways.
(post is archived)