What two-factor authentication solutions already exist? I'd honestly rather not use google authenticator, but cooking my own seems dangerous. It doesn't neccessarily have to not be hosted by a third party, but I'd rather not be part of the google buttnet if possible.
DUO is incredibly good, because the "push" system means you don't have to fuck around with typing codes in.
>>57582797
Requires a license. It's good enough for institutions with all internal users, but sucks for external users. You need lots of extra licensing for external users. Sucks.
>>57582797
Duo looks neat. I'll have to see how big I can make our budget.
I realize now how stupid it is to think of google authenticator as an authentication system. It's merely an app that generates a TOTP.
One could, really though, home-brew the same solution that Duo supplies.
I should probably have included the link to Duo's network diagram.
https://duo.com/docs/duoweb#network-diagram
What you should be using is U2F.
https://fidoalliance.org/specifications/overview/
FreeOTP? Put it on an offline device to use it like
>>57587142
>>57582741
FreeOTP