Dear comrades,
Recently I got more into online privacy – due to my direct and indirect environment –, this is also why I created a new account that is harder to be traced back to me.
I was wondering I you have any advise of a two-factor authenticator that I could use that is safe and Linux friendly – especially on Tails –. I already tried looking for one online, like in the surveillance self-defense guide, but couldn’t find one in which I’m 100% confident. It would also be nice if this program/the key is able to be backed-up to my other tails usb-sticks with the persistent back-up feature.
Of course I already have one on my phone but don’t want to use this one because it would be easier to trace this account back to me.
Hope you guys have some good alternatives.
Edit: grammar
Having second authentication on the same device, kind of defeats the purpose of two-factor authentication. The whole principle is that the first one is "something you know" and the second one is "something you have".
You can use something like KeePassXC that supports storing TOTP, but for the above-mentioned reason there aren't many native desktop clients for TOTP. You are better off using hardware key in these cases. Something like Yubikey or Nitrokey.
First of al thanks for the recommendations! I’m aware that it’s a little counterproductive to have a two-factor authenticator on the same device, but I wasn’t aware of the alternatives – apart from the authenticator apps –.
How safe are these key’s in general, like If someone could get a hold of these can they see on which websites/program's they are used? Is it also possible to have two of these keys – to prevent being locked-out when loosing one –?
No.
Yes. That's the best practice, too. Have at least 2 so if one is lost, you still have access to everything (some sites do offer other backup methods, but it can vary, so better be safe).
Thanks for the information, I will certainly look into it!