You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The issue with Authy is that it depends on a phone number which can be changed through an email request, allowing anyone access to HOTP/TOTP after an approximate 4-day wait period.
The text was updated successfully, but these errors were encountered:
To use either Authy or Authenticator for TOTP is less secure, I will argue, than to use Password Store and/or Aegis.
Password Store uses gpg-encrypted plain text files to manage passwords and syncs with any git provider.
Password Store (Manage your passwords) - https://f-droid.org/packages/dev.msfjarvis.aps
Aegis Authenticator is open source (licensed under GPL v3) and the source code can be found here: http://github.com/beemdevelopment/Aegis
The issue with Authy is that it depends on a phone number which can be changed through an email request, allowing anyone access to HOTP/TOTP after an approximate 4-day wait period.
The text was updated successfully, but these errors were encountered: