Hacker News new | comments | show | ask | jobs | submitlogin
Show HN: Twothy: 2FA Authenticator for CLI. Compatible with Google Authenticator (github.com)
6 points by vedhavyas 9 months ago | hide | past | web | 3 comments | favorite

Can you elaborate on the threat model here? Having the second factor be stored on the same device you're entering your password on, protected by a password (another example of something-you-know), seems to counteract most of the benefits of having TOTP.

I think its largely about protection from remote attacks.

Its a kind of "only allow logins from this device". This doesnt solve all problems definitely, but for some of us there is zero practical danger from our location and much higher danger from geographically remote locations

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | DMCA | Apply to YC | Contact