GitHub to require 2FA on accounts by October 6, 2023 - eviltoast

I personally am fine with this.

  • vinniep@lemmy.world
    link
    fedilink
    arrow-up
    4
    arrow-down
    2
    ·
    1 year ago

    Google Auth works just fine. The standard for app generated 2FA is, well, standard. They’re only listing a non-complete list of options for people that don’t know what an authenticator app is and need to get one for the first time.

      • vinniep@lemmy.world
        link
        fedilink
        arrow-up
        1
        ·
        1 year ago

        That is the specific app the person I replied to was asking about, so yea. Would have been a little weird if I was talking about some other app.

      • vinniep@lemmy.world
        link
        fedilink
        arrow-up
        1
        ·
        1 year ago

        Mostly. The 6 digit standard ones that you see almost everywhere are standard TOTP codes and most apps work for them. There are some proprietary things out there too but you typically see those with a matching app from the same company. Those are far less common though so for practical reasons you can assume they are all interchangeable.

        Those values are computed separately what the app is really storing is just the input values which are then combines with the current time to create the 6 digit code. That means that keeping that input value (seed) safe is a big deal, and how and where that is done is one of the major differentiators between the various options.