this post was submitted on 13 Oct 2025

125 points (97.7% liked)

Selfhosted

52401 readers

1474 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.
No spam posting.
Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.
Don't duplicate the full text of your blog or github here. Just post the link for folks to click.
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).
No trolling.

Resources:

selfh.st Newsletter and index of selfhosted software and apps
awesome-selfhosted software
awesome-sysadmin resources
Self-Hosted Podcast from Jupiter Broadcasting

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago

MODERATORS

HybridSarcasm@lemmy.world

HybridSarcasm@lemmy.hybridsarcasm.xyz

125

What are you all using for a 2FA token manager? (lemmy.blahaj.zone)

submitted 1 week ago by BonkTheAnnoyed@lemmy.blahaj.zone to c/selfhosted@lemmy.world

112 comments fedilink hide all child comments

One more step to unhitching from Google...

Right now the only option I see in F-Droid is Aegis.

I'm not sure what to actually look for side from checking for unexpected permissions and reasonably frequent updates.

Hopefully something I can sync with a GNOME app...

top 50 comments

sorted by: hot top controversial new old

[–] bitwolf@sh.itjust.works 16 points 6 days ago

Aegis

[–] ClydapusGotwald@lemmy.world 10 points 6 days ago (1 children)

Ente

[–] gajahmada@awful.systems 5 points 6 days ago (1 children)

Ente

[–] poolhelmetinstrument@lemmy.world 2 points 6 days ago (1 children)

Ente

[–] agelord@lemmy.world 4 points 6 days ago (1 children)

Ente

[–] antimongo@lemmy.world 2 points 6 days ago (1 children)

Ente

[–] Regulator0394@lemmy.dbzer0.com 2 points 6 days ago (1 children)

Ente

[–] glnpf148@lemmy.world 4 points 6 days ago

Gans

[–] lka1988@lemmy.dbzer0.com 7 points 6 days ago

I use Aegis, automatically backed up every time a new key is added. Was using Authy for a while, but they're going down the enshittification hole, so I dumped them.

[–] erev@lemmy.world 4 points 6 days ago

Bitwarden as Vaultwarden enables TOTP.

[–] Lettuceeatlettuce@lemmy.ml 3 points 6 days ago

Aegis for time codes, Nitrokey for physical 2FA tokens.

[–] nickiam2@aussie.zone 3 points 6 days ago

Yubikey. It supports TOTP as well as passkeys. Plus is a physical device separate from my phone. Recommend getting 2 to have 1 as backup

[–] NotMyOldRedditName@lemmy.world 3 points 6 days ago

Yubikeys. I think everyone should get a couple (need 2 in case 1 lost)

[–] MrSulu@lemmy.ml 2 points 6 days ago

Ente Auth

[–] ChocolateFrostedSugarBombs@lemmy.world 1 points 6 days ago

A combination of Yubikey and Enpass (I got Enpass back when it was $15 for perpetual).

[–] pipe01@programming.dev 73 points 1 week ago

I use Aegis, it works well

[–] deathbird@mander.xyz 60 points 1 week ago

I like Aegis.

[–] salacious_coaster@infosec.pub 49 points 1 week ago (8 children)

Bitwarden. I don't self host it, though. $10 a year for password management and 2FA is fine by me.

load more comments (8 replies)

[–] cmnybo@discuss.tchncs.de 42 points 1 week ago (7 children)

I've been using KeePassXC. I use Syncthing to keep the database synchronized between computers.

[–] pedroapero@lemmy.ml 1 points 1 day ago* (last edited 8 hours ago)

Yes, the only issue I have with it is that you can only have one TOTP for each site entry (need to create two separate entries if using two accounts).

load more comments (6 replies)

[–] asudox@lemmy.asudox.dev 26 points 1 week ago

I use Aegis on my phone.

[–] zingo@sh.itjust.works 22 points 1 week ago (2 children)

Aegis.

I like the auto backup feature (encrypted) . Then the backup is synced to computer via Syncthing.

Set and forget setup.

[–] Ohh@lemmy.ml 1 points 6 days ago

For me aegis is by far the best. Simple. Encrypted. Backup. It's saved to a syncthing folder. Passwords are in bitwarden for simpme stuff but keepassxc is great. And also synced via syncthing.

[–] d3lta19@lemmy.ca 1 points 6 days ago

I also use aegis. Have been for years and it works great

[–] spacelord@sh.itjust.works 21 points 1 week ago

Aegis ♥️

[–] Appoxo@lemmy.dbzer0.com 21 points 1 week ago

Aegis

[–] fubarx@lemmy.world 18 points 1 week ago (1 children)

load more comments (1 replies)

[–] Curious_Canid@lemmy.ca 17 points 1 week ago

I've been using Aegis for several years now without any problems. It replaced the Google Authenticator seamlessly.

[–] Unlearned9545@lemmy.world 17 points 1 week ago (14 children)

Bitwarden

[–] waspentalive@lemmy.world 1 points 6 days ago

Bitwarden

load more comments (13 replies)

[–] AMillionMonkeys@lemmy.world 12 points 1 week ago

Bitwarden Authenticator because Bitwarden seems to have a good reputation. I don't use their password manager, though.
It does seem faintly insecure that it displays all of the codes at once on one page, but I'm having trouble imagining a scenario where it's actually a problem.

[–] nullpotential@lemmy.dbzer0.com 12 points 1 week ago

Enteauth

load more comments