Ranter
Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Comments
-
@Haxk20 Thanks, you made me realize I should mention that a custom written app is a no go as well. Sms, sure but that's isn't cheap :/
-
SPie18267yYou could support 2fa keys Like Yubikey. I think Yubikey hast SDKs for a lot of technologies.
-
SPie18267y@CozyPlanes maybe he could buy the six monitors because he doesn't spend money for stuff like SMS 2fa
-
@CozyPlanes
Left top: 50 euro, second hand
Middle/right top: 30 euro together including monitor arms
Left bottom: 50 euro including monitor arm
Middle bottom: 80 euro
210 total, acquired over about a year.. That's not that much haha -
-
@linuxxx so does authy looks good? It is not that expensive per sms considering you are "rich" 😎😎
-
@CozyPlanes I think the big companies now start forcing 2fa now for every of their workers.. Just a matter of time :D
-
sms still might be a free option. I don't know a good way to figure out a number's provider though.
https://google.com/amp/s/... -
@fuck2code haha yeah. I don't like google as a business for the same reason i like their search they scrap everything so its easier to find info
https://digitaltrends.com/mobile/... -
bahua129047y2FA is responsible, but I have yet to see an implementation that's not a pain in the ass to authenticate with.
-
sagar131017yFingerprint? Face/voice recognition? Presence of another known device nearby? A couple of security questions
-
mrgadget4767yTake a look at U2F. An emerging 2FA protocol bring adopted by some rather big players.
-
bahua129047y
-
Flygger19817yAs @CozyPlanes, @fuck2code, and @hypervtechnics mentioned TOTP is specified in RFC 6238 and has several implementations of both client and server readily available :)
https://en.wikipedia.org/wiki/...
Related Rants
Question regarding implementing two factor authentication.
I want to implement 2FA for at least one service I'm writing but I'm wondering, next to email, what services/implementations could I use?
I know that email isn't the best when it comes to security but I also don't want to force (a-technical) users to install an app specifically for 2FA so keeping email as an option as well.
But except for email, any ideas? Anything related to Google/facebook (prism integrated services) are a no go anyways (this has, as mentioned before, nothing to do with my ego or giving myself 'a pat on the back')
As for costs, I don't mind a little bit of money but the service will be free at first and I'm not rich :)
Looking forward to the comments!
question
two factor authentication
2fa