Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsGeekzoneGeekzone login server rejects 2FA codes faster than desktop Authy generates them.
View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 | 3 
Wara
43 posts

Geek
+1 received by user: 7


  #2274564 11-Jul-2019 11:44
Send private message

If they are serious about customer relations they should remove the desktop app from their download site.



networkn
Networkn
32863 posts

Uber Geek
+1 received by user: 15453

ID Verified
Trusted
Lifetime subscriber

  #2274624 11-Jul-2019 14:13
Send private message

I'd be emailing the CEO at this point. I reserve this for when I feel that nothing else would work, but considering the type of bug and how important 2FA is to many (should be everyone) waiting 5 months for a fix at best, doesn't seem acceptable.

 

We use a variety of apps, is Authy the only supported one for this site? Would this issue go away if you used LassPass Authenticator or Google Authenticator in the mean time?

freitasm
BDFL - Memuneh
80652 posts

Uber Geek
+1 received by user: 41044

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #2274628 11-Jul-2019 14:15
Send private message

networkn:

 

We use a variety of apps, is Authy the only supported one for this site? Would this issue go away if you used LassPass Authenticator or Google Authenticator in the mean time?

 

 

You can use any TOTP application - LastPAss, Google, Microsoft will all work. The problem with some is that you don't have the sync capabilities provided by Authy.




Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies 

 

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

 



networkn
Networkn
32863 posts

Uber Geek
+1 received by user: 15453

ID Verified
Trusted
Lifetime subscriber

  #2274635 11-Jul-2019 14:35
Send private message

I'd never use a desktop auth app myself. If my workstation was compromised, I don't want them having access to the app on it that provides 2FA. May not apply to everyone obviously.

 

 

Wara
43 posts

Geek
+1 received by user: 7


  #2274648 11-Jul-2019 14:58
Send private message

The desktop app allows a master password to be applied

networkn
Networkn
32863 posts

Uber Geek
+1 received by user: 15453

ID Verified
Trusted
Lifetime subscriber

  #2274650 11-Jul-2019 14:59
Send private message

Wara: The desktop app allows a master password to be applied

 

Still less secure, in my view, than a seperate device. My app requires a fingerprint as well.

 

Each to their own.

 
 
 
 

Shop now for Lego sets and other gifts (affiliate link).
Jase2985
13731 posts

Uber Geek
+1 received by user: 6202

ID Verified
Lifetime subscriber

  #2274653 11-Jul-2019 15:04
Send private message

Wara: The desktop app allows a master password to be applied

 

the app supports pin and finger print protection

Wara
43 posts

Geek
+1 received by user: 7


  #2274741 11-Jul-2019 17:39
Send private message

Yes, the mobile app has better security features but this discussion is about Authy's willingness, or should I say unwillingness, to support one of their products, not about the merits of the mobile vs desktop apps.

 

I'm a newbie to 2fa.  First time last week (not the Geekzone site) and Authy was my first choice after reading the reviews.  I had it for one day before seeing the post from @Baboon and was able to replicate the issue.  The company's response, which is to abandon a segment of its consumer base, is not a good look.  Sure, I could continue to use the mobile app and/or resync the desktop app when a token has been open for more than 30 sec but prefer not to use  products from a company with this attitude.  I'll try out the competition's products.

Baboon

386 posts

Ultimate Geek
+1 received by user: 35


  #2274746 11-Jul-2019 17:57
Send private message

Well, I would add again (and I'm sorry if this seems rude to Geekzone admins), but IME this roughly 30 second lag in code display only affects Geekzone (and of course any other 2FA setup that discards codes within only 30 seconds, though I've not run across any others using such a short timeout).

So while I still think it's pretty darn poor of Authy devs not to fix this bug, I expect one of the rather weak excuses they have for not doing so, is lack of user impact and resulting lack of bug reports and complaints.

So my advice to everyone who cares is to file those bug reports and let them know how you feel :-)




"The surest sign that intelligent life exists elsewhere in the universe is that it has never tried to contact us."

 

- Calvin and Hobbes (Bill Watterson)

Wara
43 posts

Geek
+1 received by user: 7


  #2277674 16-Jul-2019 11:00
Send private message

The Twilio Technical Support Engineer who responded to my bug report didn't admit to the bug.  He suggested uninstalling and reinstalling to fix a possible sync issue.  I've now sent him the Twilio responses to @Baboon and said that I'm using Lastpass now. 

1 | 2 | 3 
View this topic in a long page with up to 500 replies per page Create new topic








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.








RSS feeds
Main feed
Forums feed
Copyright
©2002-2026 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright