this post was submitted on 30 May 2024
57 points (98.3% liked)

Privacy

31991 readers
497 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

9 months ago, Raivo OTP for iOS was sold to Mobime. Raivo was hailed highly in terms of privacy, but was dethroned to 2FAS Auth after that incident. Today, Raivo launched an update, and after updating all of my entries were completely wiped. I didn't have a backup, but even if I did you now have to pay in order to import/export TOTP codes. No thank you.

If you haven't already, create a backup right now for all of your 2FA apps, even if you think it won't break.

all 17 comments
sorted by: hot top controversial new old
[โ€“] [email protected] 14 points 5 months ago

You should be storing your 2fa seeds somewhere just in case an update isn't able to import a backup. Makes it easy to shift to another app.

[โ€“] [email protected] 6 points 5 months ago* (last edited 5 months ago) (1 children)

Thank you for the heads up. Mine had already updated this morning. Not sure if you were able to get yours working but in case others are having problems the new update splash screen prompts you to select a subscription option. If you close that prompt it will ask to choose local/cloud storage and enter your master password. Once I did that all of my keys showed up.

Having said all of that I will be switching out of this app as soon as I find a replacement. Totally fine if developers want to generate revenue by adding features or services (I pay for plenty of great apps) but this is a clear attempt to generate revenue quickly. Even a simple splash screen warning users this was coming would have demonstrated some confidence in the new ownership, but they have traded any confidence for a quick dollar.

Edit: they have locked the zip export feature behind their paywall ๐Ÿคฌ I would rather spend all day manually moving codes than give these scammers a single dime

[โ€“] [email protected] 2 points 5 months ago

If you close that prompt it will ask to choose local/cloud storage and enter your master password. Once I did that all of my keys showed up.

Sadly they didn't show up for me. Best of luck exporting your codes o7

[โ€“] [email protected] 5 points 5 months ago (3 children)

What's the use case for using anything other than red hat's freeotp?

[โ€“] [email protected] 8 points 5 months ago (1 children)
[โ€“] [email protected] 7 points 5 months ago

Aegis is for Android, Ravio is an iOS app.

[โ€“] [email protected] 2 points 5 months ago

Uh, what do you mean? OpenOTP is great for 2FA for lots of sites.

[โ€“] [email protected] 1 points 5 months ago

If I remember correctly, I chose ravio over freeotp because the later lacked:

  • Scanne functionality didn't work.
  • No export / inport
  • Freeotp seemed like abondonware

Jokes on me.

[โ€“] [email protected] 5 points 5 months ago

Why wouldn't you have backups? Of course OTPs are the most important thing to backup..

[โ€“] [email protected] 5 points 5 months ago
[โ€“] [email protected] 1 points 5 months ago (1 children)

Backups are good but this seems like a iOS type issue. Locked ecosystem with closed source apps designed to milk you.

Fossdroid is they way

[โ€“] [email protected] 3 points 5 months ago (1 children)

I'm all for open apps but you'd have the same problem on Android without root if the app chooses to keep its stuff in its private storage. It's worth noting it's not restricted to iOS.

[โ€“] [email protected] 1 points 5 months ago

You really don't. Android has F-droid which has lots of 2FA apps. These apps are community built so it is unlikely that you would have the same issue. However, you can still backup most of them just in case

[โ€“] [email protected] -1 points 5 months ago

The app was bought out 9 months ago by some mystery company, isn't actually open source, and you have not switched or made backups? I'm sorry, this is as much a user error as an issue with Raivo.