Comment on You can now use authenticator apps to keep your GOG account secure!
Ulrich@feddit.org 1 day agoI’m pretty sure it doesn’t but I’ll bite: How did you set that up?
Comment on You can now use authenticator apps to keep your GOG account secure!
Ulrich@feddit.org 1 day agoI’m pretty sure it doesn’t but I’ll bite: How did you set that up?
Sonotsugipaa@lemmy.dbzer0.com 1 day ago
I don’t recall, I’ve set it up a few years ago - I’ve been trying to look for instructions for another comment, but it seems that they made it VERY difficult for people without rooted Android to obtain the TOTP secret.
Though it is RFC 6238 compliant, using 5 digits instead of 6.
Ulrich@feddit.org 1 day ago
Okay, let’s say there’s currently no native support for normal TOTP.
Sonotsugipaa@lemmy.dbzer0.com 1 day ago
That much I can agree with at this point.
Actually, it’s arguably even worse - it’s not that Steam doesn’t support normal TOTP, it’s that Steam goes out of their way to prevent TOTP from being used without switching to an entirely new algorithm.
Ulrich@feddit.org 1 day ago
Could be worse. GOG’s approach is super annoying, and a lot of platforms (like fucking Apple) actually require the use of insecure SMS verification. And as far as I know Steam hasn’t been hit with any data breaches since 2011.