Many sites are trying to tighten up security, for good reason. I access GitHub and GitLab using SSH. I think that that is unaffected because SSH Public Key Cryptosystem is secure in a way that password system are not. But I also want to github them via the HTTPS interface. GitHub is forcing me to go to TOTP for 2FA next month to access their web interface. (ssh ought to continue working since it's authentication is solid). Sadly, I know little about TOTP. Sites try to make it so easy that it is hard to understand what they want. There is a strong push to put The Thing (authenticator? Client?) on you mobile phone. I don't really want to because (1) I take my phone outside my house, and (2) my phone software isn't open source. I want The Thing to run on my Linux desktop. ==> What do you guys do? GNOME's "Software" program finds 3 progams: OTPClient - most used - download size: 348.1 MB! Probably because it is a flatpak - when I run it it says "memlock value to low" <https://github.com/paolostivanin/OTPClient/wiki/Secure-Memory-Limitations> That suggests that you need to have a memlock limit greater than 67108864 KB (larger than 67 GB). That's the amount of memory that programs can lock into RAM. Nonsense: how many machines even have 67 GB of physical RAM, let alone RAM you want to dedicate to an accessory. The diagnostic seems to be a known error with flatpak version <https://github.com/paolostivanin/OTPClient/issues/372> In fact, that points out multiple problems with the flatpak version, which is what I was delivered. ABANDON, with a comment. <https://github.com/paolostivanin/OTPClient/issues/384> Authenticator - download size: only 32.8 MB Numberstation - download size: only 28.4 KB Python, I think. EPIPHANY: I want a CLI-based Thing since I'd like to access it via SSH. So looking in the GNOME repos was a mistake. To be continued...