While that is true, the risk of someone brute forcing into an account of mine on the login side than on mine. That’s what I use 2FA against. If they managed to break into my vault, they’d have broken into my Mailserver and whatnot, so…
Which is damn near cheap compared to other companies. I personally use dashlane (I know I know I should self host but I don’t trust myself for something as important as passwords) and that’s $60 for their premium package.
It may very well be, especially if the basket your eggs are in is full of holes. I always figure, as long as it isn’t a pad of paper on a desk, or a company that regularly makes headlines due to security breaches, I should be okay.
It’s $10 annually in case you thought it was monthly. I’d imagine if you went in and subbed, then cancelled the sub, you’d still have your year you paid for. But yah, I’d like an option to not auto-renew, even though I do.
I just want a selfhostable Authy clone. Is that too much to ask?
Bitwarden can do everything Authy can afaik
It is a bad idea to have your password manager and 2FA be the same app though. You want to spread it around so one attack can’t break your logins.
You aren’t wrong and I should rethink that. But BW is so damn handy.
Removed by mod
While that is true, the risk of someone brute forcing into an account of mine on the login side than on mine. That’s what I use 2FA against. If they managed to break into my vault, they’d have broken into my Mailserver and whatnot, so…
BitWarden can generate 2FA tokens? I don’t see any option for that on Android
Vaultwarden can. Self hosting isn’t for everyone though.
Given that the comment was a demand for self hostable Authy, I think they might wanna :P
Ha. Apparently two comments worth of context is too much for me to handle.
Removed by mod
deleted
Need to pay for a subscription for TOTP. It’s like $10/year for the personal plan.
Which is damn near cheap compared to other companies. I personally use dashlane (I know I know I should self host but I don’t trust myself for something as important as passwords) and that’s $60 for their premium package.
I love my bitwarden but is it less secure to have all your eggs in one basket? That’s the main reason I’ve been using separate apps so far.
It may very well be, especially if the basket your eggs are in is full of holes. I always figure, as long as it isn’t a pad of paper on a desk, or a company that regularly makes headlines due to security breaches, I should be okay.
Cool, I might check it out then. I knew I’d have to move off of authy eventually.
2FA need a active subscription i believe https://bitwarden.com/help/authenticator-keys/
Or you self host
I self-host, but I still pay for their premium because it’s a damn good product I want to see kept maintained for years to come.
I mean, cmon, it’s $10. Almost cheaper than a banana.
Lucille?
Glad someone caught that.
Removed by mod
It’s $10 annually in case you thought it was monthly. I’d imagine if you went in and subbed, then cancelled the sub, you’d still have your year you paid for. But yah, I’d like an option to not auto-renew, even though I do.
Removed by mod
True!
Thanks.
Yeah, I already run Vaultwarden. But like others I don’t really want to combine my tokens and passwords.
I just use FreeOTP+ on my phone. It’s a fork of a Red Hat authenticator, and completely open source and available on F-Droid.
No sync, but you can export the TOTP secrets if you want to back them up/move them.
Thanks was looking for something like this
Bitwarden has TOTP support with a pro license. Or you can just selfhost (using vaultwarden) and have all the features instead.