I am curious if anyone has tried GNOME Authenticator (or, simply “Authenticator”) before and what their own experience was like.
Long-winded context and first impressions
I am aware Authenticator’s audience is currently limited (i.e., limited to Linux users) and its distribution methods via Debian’s/Ubuntu’s repos lag behind quite a bit compared to the latest upstream development.
However, I wanted software that was dedicated to managing TOTP entries on the desktop and something with a better UI/UX than the “DIY” method of storing TOTP secrets in a separate KeePassXC database, as described the first time I heard this somewhere in the Privacy, Security, and OSINT Show with Michael Bazzell.
I was browsing the AUR and came across Authenticator. Apparently I should be able to use my encrypted Aegis JSON file and open it in Authenticator, but it still crashes, as described in this GitLab issue.
It seems like I’ll have to bite the proverbial bullet and copy and paste my TOTP secrets into Authenticator, but I think that’ll be ok if I send the TOTP secrets via Note to Self in Signal.
I feel GNOME Authenticator should be given more time (at least until version 4.2.0 makes it into Ubuntu LTS repos) to iron itself out before I consider submitting it as a suggestion on Privacy Guides.
Not that I’m an expert, though from a quick glance at its UI it looks visually good and the fact that more than 90% of its codebase is written in Rust is also a promising sign.
I use it with a plain-text Aegis file, and it works perfectly. If you reimport the same plain-text file though, it will duplicate entries, so syncing requires that you copy and paste the new code into Authenticator, or that you add it to Authenticator first, export to plain-text, and then select that account to import into Aegis.
Also, I recommend installing the Flatpak. It works perfectly and is always the latest version. The developer doesn’t support other installation methods.
Massive organizations are monitoring your online activities. Privacy Guides is your central privacy and security resource to protect yourself online.