 |
Post AtSh4rZigpXCfyxwv2 by [email protected] |
 |
More posts by [email protected] |
|
Post #ArI5qnrVlSfAL3hx3Y by [email protected] |
|
0 likes, 0 repeats |
|
|
|
I think I've created the *least* secure multi-factor authentication code.Pl… |
|
|
|
Post #ArI5qo2V6bSAt8qjBY by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Edent |
|
|
|
Post #ArI62PzCMQchlOqG00 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@tychotithonus sorry, I should have been more clear. What's the name of the… |
|
|
|
Post #ArI62Q8lmqHOF5Jtuy by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Edent Whoops, inappropriate use of alt text. Authy (in this case, Android) |
|
|
|
Post #ArI6GJB0TWeyhLzLRQ by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@Edent I don't really think I'm going to scan something you describe as… |
|
|
|
Post #ArI6GJJ9zDBL6dnr9M by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@aburka @Edent This is like the Penn & Teller version of quishing. Telling … |
|
|
|
Post #ArI7Jy4MzbGgLfC1nE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@Edent looks looks iOS native "password" app supports it, Microsoft a… |
|
|
|
Post #ArI7JyCWVHn2kx0XVA by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@m_rothe Interesting! It *should* only be 1 digit!How many digits does iOS and … |
|
|
|
Post #ArI7JyJc4vSf6wKCYK by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@Edent they also look to cycle every 30 seconds rather than the 120s that 1Pass… |
|
|
|
Post #ArI7JyRPbvhRV7yQi0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@m_rothe thanks! Mind if I use those photos on a blog post? |
|
|
|
Post #ArI7JyYrAFedsDSNJQ by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Edent sure 👍 screenshot of the Microsoft iOS app here. Apple passwords hide… |
|
|
|
Post #ArJGZezMnN4QY8N0vg by [email protected] |
|
0 likes, 2 repeats |
|
|
|
@Edent "invalid token url" (FreeOTP+ 3.1.1(23), Android) |
|
|
|
Post #ArJHNmTFFg5yEXFFMO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@Edent @ente Auth on iOS adds it without complaining. |
|
|
|
Post #ArJK1qhT97UuqI8El6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@zerodogg Does ente show it as a single digit code with a 120 second timeout?(S… |
|
|
|
Post #ArJK4LTfgfYisNruGu by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@Edent Yup |
|
|
|
Post #ArbqwLmbSj76q5nWLY by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Thanks for all the feedback.Based on this, I'm creating a TOTP test suite.T… |
|
|
|
Post #ArbqwLwWrp3NKsRRom by [email protected] |
|
0 likes, 1 repeats |
|
|
|
OK! It is ready to play with!A Time-based One Time Password (TOTP) test suite. … |
|
|
|
Post #ArdqqHAE6xep5ms2lc by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Edent Heres there results, for 1Password. All passed except:One billion second… |
|
|
|
Post #AtSh4rZigpXCfyxwv2 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@EdentQR Scanner shows:otpauth://totp/UltraSecure:Total%20Protection?secret=abc… |
|
|
|
Post #AtSh4rhAF9UP34RtWS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@sab38 what happens if you try to add it to your MFA app? |
|
|
|
Post #AtSh4rnBskJHLlGhuq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@EdentI tend to look at the QR codes before just trusting them. Since you sai… |
