Highly secure and easy to use GTK+ software for two-factor authentication that supports both Time-based One-time Passwords (TOTP) and HMAC-Based One-Time Passwords (HOTP).
|Name||Min Version||Suggested Min Version|
- support both TOTP and HOTP
- support setting custom digits (between 4 and 10 inclusive)
- support setting a custom period (between 10 and 120 seconds inclusive)
- support SHA1, SHA256 and SHA512 algorithms
- support for Steam codes (please read THIS PAGE)
- import encrypted Authenticator Plus backup
- import and export encrypted and/or plain andOTP backup
- import and export plain FreeOTPPlus backup (key URI format only)
- import and export plain Aegis backup (plain json only)
- local database is encrypted using AES256-GCM
- key is derived using PBKDF2 with SHA512 and 100k iterations
- decrypted file is never saved (and hopefully never swapped) to disk. While the app is running, the decrypted content resides in a "secure memory" buffer allocated by Gcrypt
- Before each release, I run PVS Studio in order to catch even more errors and/or corner cases
- With every commit to master, OTPClient is compiled in CircleCI against different distros
For things like roadmap, screenshots, how to use OTPClient, etc, please have a look at the project's wiki. You'll find a lot of useful information there.
If OTPClient hasn't been packaged for your distro (check here) and your distro doesn't support Flatpak, then you'll have to manually compile and install OTPClient.
- install all the needed libraries listed under requirements
- clone and install OTPClient:
git clone https://github.com/paolostivanin/OTPClient.git cd OTPClient mkdir build && cd build cmake -DCMAKE_INSTALL_PREFIX=/usr .. make sudo make install
This software is released under the GPLv3 license. Please have a look at the LICENSE file for more details.