[kwlug-disc] Google with TOTP

Khalid Baheyeldin kb at 2bits.com
Wed Jun 8 23:00:57 EDT 2022


An update that makes TOTP extremely portable across devices.

Basically when you pair a web site with a TOTP program (e.g. FreeOTP+
Android App),
the site displays a key, and uses a hashing method (e.g. SHA1). If you can
get that
key in another TOTP app, then it is free from the shackles of a certain
device.
That overcomes the scenario where your phone is lost or stolen.

Linux has a command line TOTP program called oathtool, and there is an apt
package in Ubuntu's repo by the same name.

It is really simple to use. You only need to specify the key and key format
(e.g.
-b for base32, and the hash type, and off you go.

$ oathtool -b --totp=sha1 KEYGOESHERE
123456

Install it on your laptop, as well as a server, and store the key in a file
that
is readable only to your user, and it is done.

Now the remaining step for me is to figure out how to pair Google with
TOTP.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://kwlug.org/pipermail/kwlug-disc_kwlug.org/attachments/20220608/06210d41/attachment.htm>


More information about the kwlug-disc mailing list