Hacker News

GitHub now requiring 2FA for all contributors,what authenticator apps you using?

10 points by nickcageinacage ago | 20 comments
GitHub is rolling out mandatory 2FA for accounts that contribute code, with a 45-day window to enroll.

Aegis, Raivo, or Ente are the ones that have most promise from what I've read. Any other recommendations? or thoughts on those three in particular.

TY

uyzstvqs |next [-]

Aegis (local) https://github.com/beemdevelopment/aegis

Bitwarden Authenticator (local) https://bitwarden.com/products/authenticator/

Ente (encrypted cloud backup) https://ente.com/auth/

jjgreen |next |previous [-]

That's been pending for a while, I'll just stop contributing code.

nextos |root |parent |next [-]

You don't need an app if you don't want one.

In a CLI, oath lets you calculate a TOTP.

But it's maybe a bit more insecure if you use the same machine.

codazoda |root |parent |previous [-]

Why? You’re against 2FA? You couldn’t contribute without an account before, could you?

jc-myths |next |previous [-]

Google auth, first and the only 2FA authenticator I ever used.

codazoda |next |previous [-]

Authy but I’m considering moving to Apple Passwords so it’s all together.

ecesena |root |parent [-]

Same. To add some details, I used Authy because at the time it was the only app that would just work after upgrading my iphone. I never enabled their cloud mode, so only local 2FA codes.

riidom |next |previous [-]

on phone: 2FA Manager from OpenStore on UBports phone

on work laptop: 1PW

cyberclimb |next |previous [-]

Checkout Ente Auth

threecheese |next |previous [-]

Using GitHub MFA via the app on my iPhone.

nickcageinacage |root |parent |next [-]

yea. I'm pretty sure they want separate authenticator app or browser extension

paulG12 |root |parent |previous [-]

So now I need my damn phone to push something. Great. What's next, my national ID?

nickcageinacage |root |parent [-]

lmao welp. that is the path other apps are going so i wouldnt be surprised

pickle-wizard |next |previous [-]

I use a passkey that is in iCloud Keychain.

mindwork |next |previous [-]

I still use Authy tbh

bjourne |next |previous [-]

Microsoft showing 2FA down everyone's throat is quite painful. I don't for a second believe they are only using my phone number for authentication. They are storing the data and they are correlating it with other apps they force 2FA on.

stephenr |root |parent [-]

So don't give them your phone number.

Arguing against 2FA is like arguing that they shouldn't bash your password because it means you can't see your password to help remember it.

nashashmi |next |previous [-]

Totp.app

stalfosknight |previous [-]

iCloud Keychain