• stealth_cookies@lemmy.ca
        link
        fedilink
        English
        arrow-up
        13
        ·
        1 year ago

        It is a bad idea to have your password manager and 2FA be the same app though. You want to spread it around so one attack can’t break your logins.

        • Norgur@kbin.social
          link
          fedilink
          arrow-up
          1
          ·
          1 year ago

          While that is true, the risk of someone brute forcing into an account of mine on the login side than on mine. That’s what I use 2FA against. If they managed to break into my vault, they’d have broken into my Mailserver and whatnot, so…

        • BearOfaTime@lemm.ee
          link
          fedilink
          English
          arrow-up
          1
          ·
          edit-2
          1 year ago

          Good point.

          Is it realistic (i.e. is it secure enough) to self-host 2 Bitwarden, one for passwords, one for authentication?

          Or would splitting that between 2 Bitwarden logins work?

          I just throwing stuff at the wall, I haven’t thought either of these through yet.

      • bdonvr@thelemmy.club
        link
        fedilink
        English
        arrow-up
        4
        ·
        1 year ago

        Yeah, I already run Vaultwarden. But like others I don’t really want to combine my tokens and passwords.