this post was submitted on 14 Jul 2023
500 points (97.3% liked)
Asklemmy
43971 readers
939 users here now
A loosely moderated place to ask open-ended questions
If your post meets the following criteria, it's welcome here!
- Open-ended question
- Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions. Assume best intent and be excellent to each other.
- Not regarding using or support for Lemmy: context, see the list of support communities and tools for finding communities below
- Not ad nauseam inducing: please make sure it is a question that would be new to most members
- An actual topic of discussion
Looking for support?
Looking for a community?
- Lemmyverse: community search
- sub.rehab: maps old subreddits to fediverse options, marks official as such
- [email protected]: a community for finding communities
~Icon~ ~by~ ~@Double_[email protected]~
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
It's a wild time saver. I can’t believe other folks go to a whole separate app for their codes! Hitting Ctrl+L to autofill passwords and user names then Ctrl+V for TOTP feels like a hack when I watch other people struggle with their other solutions.
I use a separate app for my codes, if someone somehow gains access to my Bitwarden if they have TOTP as wellcthrn they have all my accounts. With my TOTP in another app they still can't access them.
What do you use?
Not OP but, consider using something like a YubiKey or similar hardware key for your second factor authentication.
They usually support multiple protocols so you only need to carry one around - and storing your second factor with your passwords is like putting all your eggs in one basket.
Print out recovery codes or get an ekstra hardware key for backup and you get great security for surprisingly little effort.
Personally I like Microsoft Auth. It just works well for 365
Right! I was using Authy so I didn't have to grab my phone every time, but even that was still having to open the Authy app and wait for it to load, copy+paste. But using the keyboard shortcuts for Bitwarden is just so fast. Like you said, feels like a hack. It even auto copies on Android and with the autofill, makes it so easy.
I use keepassxc which autofills. Then 2fsa has an addon that auto adds the code. I'm in in under 10 seconds. I dread the idea of keeping my passwords and TOTP in the same vault.