anon/gauth
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

README.md cleanup, time to sleep

Browse Source
This commit is contained in:
Pierre Carrier 2013-11-14 03:21:16 -08:00
parent c3407fc375
commit 9821a5e692
1 changed files with 16 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

23
README.md
View File

@ -1,5 +1,5 @@
Google Authenticator
====================
gauth: replace Google Authenticator
===================================
Installation
------------
@ -12,7 +12,7 @@ Usage
-----
- In web interfaces, pretend you can't read QR codes, get a secret like `hret 3ij7 kaj4 2jzg` instead.
- Store one secrets per line in `~/.config/gauth.csv`, in the format `name:secret`, for example:
- Store one secret per line in `~/.config/gauth.csv`, in the format `name:secret`. For example:
AWS: ABCDEFGHIJKLMNOPQRSTUVWXYZ234567ABCDEFGHIJKLMNOPQRSTUVWXYZ234567
Airbnb:abcd efgh ijkl mnop
@ -21,9 +21,9 @@ Usage
- Restrict access to your user:
$ chmod 600 ~/.config/gauth.json
$ chmod 600 ~/.config/gauth.csv
- Run `gauth`. The progress bar shows when the next change will happen.
- Run `gauth`. The progress bar indicates how far the next change is.
~$ gauth
prev curr next
@ -33,20 +33,25 @@ Usage
Github 911264 548790 784099
[======= ]
- Remember to keep your system clock synchronized and to **lock your computer when brewing your tea**!
- Remember to keep your system clock synchronized and to **lock your computer when brewing your tea!**
Rooted Android?
---------------
If your Android phone is rooted, it's easy to "back up" your secrets from an `adb shell` into `gauth`.
# sqlite3 /data/data/com.google.android.apps.authenticator2/databases/database 'select email,secret from accounts'
# sqlite3 /data/data/com.google.android.apps.authenticator2/databases/database \
'select email,secret from accounts'
Really, does this make sense?
-----------------------------
At least to me, it does. My laptop features encrypted storage, a stronger authentication mechanism,
and I take better care of preserving its physical integrity. My phone also runs arbitrary apps.
and I take good care of its physical integrity.
My phone also runs arbitrary apps, is constantly connected to the Internet, gets forgotten on tables.
Thanks to the convenience of a command line utility, my usage of 2-factor authentication went from
3 services to 9 over a few days. Clearly a win for security.
3 to 10 services over a few days.
Clearly a win for security.