On Sat, Aug 31, 2024 at 08:16:22AM +0100, Matthew Richardson via mailop wrote:
> I also wish to keep accounts/credentials indefinately, and think I have > concluded that this can be adequately achieved using TOTP as well as unique > email address/password combinations for each account. > > TOTP is based on a shared secret which is (depending upon TOTP client) > straightford to extract and retain securely for the long term. > > Does anyone see any flaw in this approach, or in the longevity of TOTP? The flaw for me is that TOTP involves using phone apps I don't know the provenance of, that back up the data in a format I don't know to my "Google Drive", which is the most protected place I'd choose. If the app I'm using stops being available, I don't currently a have a good recovery plan. What do you use to keep your TOTP data safe and sufficiently portable between "devices"? -- Viktor. _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop