![]() ![]() ![]() I can't say I recommend my solution, but it works. This might have been adequate reason to fire me, but I didn't particularly care and I was never caught. I did, and I certainly violated the trust of my employer by doing so. Ideally, you should therefore never even see your secret, and certainly not confine it to memory (or even worse, write it down). If you want to get started right away, visit your account settings. A correct code in those cases absolutely require physical control over a key. Since the very beginning, Cloudflare has offered two-factor authentication with Authy, and starting today we are expanding your options to keep your account safe with Google Authenticator and any Time-based One Time Password (TOTP) app of your choice. If, however, the secret is properly installed on a yubikey or similar, then it cannot be recovered, ever. Now, I feel the need to emphasize that this is a horrible solution which circumvents the entire purpose of the TOTP-scheme: If someone installs a key logger on your computer, observes what you type, tortures you, or even just browses through your machine if they get access to it, then they will get the secret - just as if it was a regular password, which is basically what the secret in the above case has been reduced to. However, if you want it really simple, then you can even do this interactively in the python shell with available libraries: In : import pyotp As for the one time code, the algorithm for TOTP is fairly simple and can be implemented in C or similar without much hassle. My secret was just 32 characters, so it was just another password to remember. This app generates one-time tokens on your device which are used in combination with your password. The app brings together best in class security practices and seamless user experience together. punch in the key whenever you need a one time code TOTP Authenticator allows you to quickly and conveniently protect your accounts by adding 2-factor authentication (2FA).5,160 2 2 gold badges 46 46 silver badges 72 72 bronze badges. Your secret shoud be in /.totpgoogle file. write a program for TOTP-codes in your favorite language Our company uses Google Authenticator codes.It wasn't pretty and head of security would have gone ballistic if they got word of it, but fortunately they never did. I was in a similar situation: My employer required TOTP for some purposes and I refused to acquire a smart phone for this. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |