this post was submitted on 29 Aug 2023
86 points (95.7% liked)

Open Source

30206 readers
264 users here now

All about open source! Feel free to ask questions, and share news, and interesting stuff!

Useful Links

Rules

Related Communities

Community icon from opensource.org, but we are not affiliated with them.

founded 5 years ago
MODERATORS
Cloak@lemmy.ml
kevincox@lemmy.ml
CrypticCoffee@lemmy.ml
Lettuceeatlettuce@lemmy.ml
86
Aegis vs Authy (lemmy.ml)
submitted 1 year ago by Kelho@lemmy.ml to c/opensource@lemmy.ml
51 comments fedilink hide all child comments
 

Hey y'all!

I've been using Authy for some time now (switched from Google Authenticator) but an increasing amount of people is suggesting Aegis over Authy in some posts here at Lemmy and that got me curious.

Was wondering what would be the main selling points for one to use Aegis instead of Authy, can somebody help out?

Thanks in advance!

you are viewing a single comment's thread
view the rest of the comments
[–] venusenvy47@lemdro.id 5 points 1 year ago (2 children)

I moved my TOTP's from Authy to Bitwarden, where you can have access to your seeds and export if you want. But I believe this requires paying the $10 per year for Bitwarden premium (which I already had).

[–] Voroxpete@sh.itjust.works 12 points 1 year ago (4 children)

I hope you're not also using Bitwarden as your password manager. Having your authenticator and your password manager accessible in the same place, with the same account, completely defeats the point of 2FA.

[–] venusenvy47@lemdro.id 4 points 1 year ago

I am using it as my password manager, and I understand it puts all my eggs in the Bitwarden basket. But I don't think it defeats the purpose of 2FA. For example, someone getting my Google password doesn't mean they have my TOTP needed to get into my Google account, or any other account with 2FA.

[–] mp3@lemmy.ca 1 points 1 year ago

It's only as weak as the weakest link. If you're using a strong and unique password as well as a strong 2FA (FIDO2) to access your Bitwarden account then it's an acceptable trade-off.

[–] amki@feddit.de 1 points 1 year ago

If you are able to open your password vault from the device you use as a second factor (which you probably do) the whole point is defeated anyways. Multiple apps on the same device won't save you.

[–] FlexibleToast@lemmy.world 1 points 1 year ago (1 children)

But I have Bitwarden setup to need 2fa.

[–] anzo@programming.dev 4 points 1 year ago

It's passwords all the way down!

[–] towerful@programming.dev 4 points 1 year ago (1 children)

Vaultwarden is the unofficial open source backend that's compatible with bitwarden clients.
But $10 a year is nothing, and it removes a lot of worries

[–] danielquinn@lemmy.ca 2 points 1 year ago

It also supports Bitwarden, so it's a good deal.