I recently bought a couple of Yubi Keys with the intention of ‘hardening’ several of my business and personal accounts, and I just had offer the Runbox people their dues for their 2FA implementation.
Enabling 2FA on the account meant that the main account password had to be replaced with “per application passwords”, which is similar to how Apple operate, and I was filled with dread, having had some prior, negative experiences with Apple devices. Anyway, the procedure was clearly explained by Runbox on the security pages of the website, so I followed along.
I generated a couple of “app passwords”, one for the K9 email client I’ve been using on Android phone for about 7 years, (flawless software BTW), and one for the Thunderbird client I run on a laptop; then I entered the new passwords in the relevant sections of each client and tested the send/receive on both devices, and everything worked perfectly.
Then, after switching on the 2FA in the web portal and generating a TOTP code, it only took a minute to link the Yubi key as a hardware 2FA to the account. Plus another minute to add a backup Yubi key, just in case.
So hats-off to the Runbox team for a pleasant, stress-free experience!