Comment on Proportion blog: Are security questions terrible for account security?
bionicjoey@lemmy.ca 7 months agonothing stops you from saying that bwE0F^pHb5iPzMZiismyeiTIWh^oB*#V8SaD0F3R*SeH was your first pets name.
How will you remember that though? A lot of password managers don’t make it easy to store security question responses alongside account credentials, and if you’re using a security question, it might be because you lost access to those credentials anyway
Boozilla@lemmy.world 7 months ago
I put these answers in the “notes” section of Bitwarden. It’s a little inconvenient, but it works.
bionicjoey@lemmy.ca 7 months ago
It depends on if the purpose of the questions is for 2FA or account recovery. If the latter, you haven’t really solved anything since if you lose one then you lose the other
smeg@feddit.uk 7 months ago
My personal view is that the extra security that these so-called security questions bring is worth less than the risks they bring. I’d rather the (low) risk of Bitwarden being compromised and losing the account than the (high) risk of someone searching or discovering information about me I can’t change and losing the account.