Google Authenticator is a TOTP client. TOTP is an open spec. If you use a differ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		scrollaway on July 12, 2016 \| parent \| context \| favorite \| on: Two Factor Auth List of Websites Google Authenticator is a TOTP client. TOTP is an open spec. If you use a different client, you can probably find one that will let you back up codes (I'm sure Authy supports TOTP). Also note that all you need for that backup is a "seed", which is a hash. IIRC Google Authenticator uses SQLite to store its data, I bet it's not hard to get the seeds out and back them up manually.

solarkennedy on July 12, 2016 [–]

I wrote a program to extract the seeds out of the sqlite and back into QR codes for easy transfer. You are right it wasn't that hard: https://github.com/solarkennedy/tfa_auth_dump

xorcist on July 12, 2016 | | [–]

Do you need to root your phone in order to extract the sqlite database?

scrollaway on July 12, 2016 | | [–]

Neat!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact