Even if I hosted my own BitWarden vault, I wouldn't put my passwords and 2 factor tokens in the same place because it's eliminating the benefits that 2 factor provides if someone somehow manages to get into my vault.
pitninja
joined 1 year ago
Exactly, from a security perspective, it's a bad idea to put 2 factor tokens together with your passwords. You effectively eliminate the security benefit that 2 factor provides if you do because if people get into your password manager, they have everything they need to access your accounts. The only people it "helps" having it all in one app are people who don't understand the purpose of 2 factor and just see it as an inconvenience when services force it on them. Even though I use BitWarden for passwords, I don't think that I'll be changing from Aegis to BitWarden's stand-alone authenticator because Aegis is doing its job nicely.
It's pretty low brow humor when I've come to expect better from The Onion 🤷
There's a pretty wide gap between A/B listers that are household names making a guaranteed 7+ figures per role and people that fight for every small role they can get, often going weeks between roles, and often only earning SAG minimums.
They could scarcely have worded that title in a way that sounded more sinister.
Reddit died for y'all's sins.
Well, it's gonna cause a few more unfortunately, I think, because there are definitely some bugs in 0.18.1-rc.1
Yeah and captcha got yanked out again. I understand they needed to get it out the door, I just don't see the argument for removing captcha when it appeared to be doing at least some good in preventing bots 🤷
v0.18 final was released pretty much as you were commenting in here.
view more: next ›
That may have been part of the reason, but the theory behind MFA is that there are 3 primary ways to authenticate who you are: what you know (password), what you have (secure one time password generator or hardware token), and what you are (biometrics). Password managers and digital one time password generators have kind of blurred the lines between passwords and one time passwords, but you're raising your risk a bit if you put them in the same place.