I remember reading somewhere that keypass was hacked. I wonderr if they got better at security.
I Don’t remember exactly if the bitwarden feature I used was OTP, I think it was something like Login with passkey and then I had to put my bitwarden password for my Google login. I just picked bitwarden because I assumed it had more free features.
Doesn’t change the fact that I’d need a specific device to login, still can’t do anything from my isolated work computer. If I was carrying my personal laptop around with me, I wouldn’t have this issue to begin with, I’d just message from there.
Makes me wish something like a literal USB key existed. Altho for now I’ll probably just not use 2FA on my email, and use an alias instead for protection.
Hear me out, keepassxc has OTP capabilities, it is a password manager that uses just one file as a database. Just with your work computer you can log in without the need of a phone.
No problem, I currently use a password manager for the command line based on gpg keys and synchronized using git. It is inteded more for linux but I think it has windows clients. If you are interested: https://www.passwordstore.org/
You can also use keepassxc on your phone, I don’t know if there is an app for iOS but play store has an app.
There are programs for PC that can generate those authentication codes, bypassing the need for a phone
I use Bitwarden
From what I’ve seen (1 min search), OTP generation is a feature for premium users of bitwarden.
If you are on windows, you should try keepass with your database in your onedrive folder for easy syncing.
If you are on linux, there are options for syncing files like samba servers or mounting onedrive itself.
I remember reading somewhere that keypass was hacked. I wonderr if they got better at security.
I Don’t remember exactly if the bitwarden feature I used was OTP, I think it was something like Login with passkey and then I had to put my bitwarden password for my Google login. I just picked bitwarden because I assumed it had more free features.
Doesn’t change the fact that I’d need a specific device to login, still can’t do anything from my isolated work computer. If I was carrying my personal laptop around with me, I wouldn’t have this issue to begin with, I’d just message from there.
Makes me wish something like a literal USB key existed. Altho for now I’ll probably just not use 2FA on my email, and use an alias instead for protection.
You mean something like a Yubikey?
Perfect, thanks :)
Hear me out, keepassxc has OTP capabilities, it is a password manager that uses just one file as a database. Just with your work computer you can log in without the need of a phone.
The only hassle is syncing the file.
Hmm, might look into it a bit more. Thanks for the starting point!
No problem, I currently use a password manager for the command line based on gpg keys and synchronized using git. It is inteded more for linux but I think it has windows clients. If you are interested: https://www.passwordstore.org/
You can also use keepassxc on your phone, I don’t know if there is an app for iOS but play store has an app.