If u have 2fa in the same database u can login on devices you don’t trust. E.g. a coworkers computer/public computer in library.
Comment on Password manager woes. How have you solved syncing on Android?
GlenRambo@jlai.lu 4 days agoIts not really 2 factors if it’s stored in the same DB though.
I came from Bitwarden where the community recommendation was to not store passwords and 2FA together in the cloud. If a beach orccurs and you lose both then there wasn’t a point in having the 2FA.
Less of a risk with a local solution but still not sure.
Tibi@discuss.tchncs.de 4 days ago
GlenRambo@jlai.lu 4 days ago
Yeah. So that seems to remove the 2 from 2FA…
Tibi@discuss.tchncs.de 4 days ago
Well yes, but no. If you only operate your password store on devices you trust, then even typing in your password on a device with a keylogger active, won’t compromise your account since you have the 2nd factor (e.g. the TOTPs)
fizzle@quokk.au 4 days ago
Yes, it is two factor, it’s just that there is no additional factors required to get the TOTP.
If you don’t use a password manager then you just remember your passwords. In this case the second factor is having access to a device that has your TOTP generator.
If you use keepass then you remember the password for your password db, and to access your passwords or TOTP you need access to a device with your keepass db.