Add two-factor authentication to your ssh in 30 se...

[cs702]

danielpal: google-authenticator prints out emergency scratch codes you can use if you lose your cellphone :-)

[danielpal]

Yeah but in reality no-one writes it down. I actually use Google-Auth for my Gmail, but I forgot were I wrote this number down(it was a couple of years ago). Keeping a scratch code for each new server is a pain.

[Karunamon]

>Yeah but in reality no-one writes it down.

Then that's a process problem that can be solved. It would take a trivial amount of time to screenshot the page and stash them in your wiki or similar.

[pooriaazimi]

Those who don't write it down deserve to be locked out.

I've written down mine on three different pieces of paper (in my wallet, my bag and my closet), and also took a screenshot from it and `gpg`-ed it (with a passphrase, so no one can open it unless they know the password) and stored it in a few online repositories, as well as a friend's mailbox.

So, I'll never be locked out from my account.

[jonny_eh]

It's the only sane thing to do!

[halostatue]

My scratch codes are in 1Password (for my personal accounts) and LastPass (for work accounts).

[charliepark]

People really should do this. It takes 10 seconds, and eliminates having any paper to lose (or keep secure). Copy and paste, and you're done.

[dalore]

Mine are printed out and stored in my safe. They are never used.

[duaneb]

> Yeah but in reality no-one writes it down. I actually use Google-Auth for my Gmail, but I forgot were I wrote this number down(it was a couple of years ago). Keeping a scratch code for each new server is a pain.

This is your problem. I keep mine (for multiple services) in my wallet, and it's worked out excellently.

[arjunnarayan]

Mine are written down in a post-it note stuck to the inside back-flap of my passport.

[ikonst]

You can use the same key for all the servers. Just copy the files generated by the 'google-authenticator' app. I don't see any less security in that.