However, say I have GA for, say, 4 services (gmail, faceboook, etc). I’m choosing between the two 2FA options. If it works for you, then perfect, you should use it! I’ll personally stick with Authy until it proves to be untenable, for any reason. – you need a printer you need paper/trees.īackup codes are definitely useful, but you have to run scenarios against your backups to determine if they’re the best fit for your needs. – how safe is “safe”? There is any possibility that your safe place is compromised and a) you don’t know about it until it’s too late b) both your primary code source and safe place are destroyed at the same time. Furthermore, if you ever reset your 2FA, you’ll have to go back and “update” your safe backup codes. If you have 100s of services with backup codes (assuming they provide them), you’ll need to be pretty awesome with your organisation skills for all your “safe” data). – your safe place is nowhere near you when a disaster strikes – many services don’t give out backup codes This solves a certain use-case, but it doesn’t help with the problems: Please share this and get the word out – there is nearly always a better way to do things. For some reason, folk that recommend Google Authenticator overlook this downside. The cost in time and friction you would incur every time a phone is replaced is massive. Pretty useful, right? The fact is that we wouldn’t use Google Authenticator without a backup option. It might be a bit tedious, but if you’ve already experienced the pain that comes with losing your GA codes, then you’ll agree some time spent here is a cheap price to pay for such a huge upside.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |