I don’t. Kinda seems silly to me.
To access a keepass file you already need 2 factors: the master password and access to the file.
Comment on Password manager woes. How have you solved syncing on Android?
GlenRambo@jlai.lu 4 days agoDo you store TOTP in a seperate KeePass?
For me swappog between two Keepass DBs is annoying. I can’t find anything that will sync my 2FAs.
fizzle@quokk.au 4 days ago
GlenRambo@jlai.lu 4 days ago
Its not really 2 factors if it’s stored in the same DB though.
I came from Bitwarden where the community recommendation was to not store passwords and 2FA together in the cloud. If a beach orccurs and you lose both then there wasn’t a point in having the 2FA.
Less of a risk with a local solution but still not sure.
fizzle@quokk.au 4 days ago
Yes, it is two factor, it’s just that there is no additional factors required to get the TOTP.
If you don’t use a password manager then you just remember your passwords. In this case the second factor is having access to a device that has your TOTP generator.
If you use keepass then you remember the password for your password db, and to access your passwords or TOTP you need access to a device with your keepass db.
Tibi@discuss.tchncs.de 4 days ago
If u have 2fa in the same database u can login on devices you don’t trust. E.g. a coworkers computer/public computer in library.
GlenRambo@jlai.lu 4 days ago
Yeah. So that seems to remove the 2 from 2FA…
RodgeGrabTheCat@sh.itjust.works 1 day ago
I keep everything in the KeePass DB. I wouldn’t do this with a password manager that stores info in the cloud.