If they get breached, as it happened once in the past, even if they work hard to make sure the data could not be compromised, I could lose everything.
There are two major flaws with this approach: Then I’d grab my phone and generate the TOTP for confirmation of my identity and I would be in.
#KEEPASSXC SYNCHRONIZE PASSWORD#
When I needed to login, the browser extension would ask me my master password and autofill the form. Security is always a compromise between cost and usability.īasically, my setup was simple: all my data was on LastPass’s servers. That may not be a smart move: if someone could grab my LastPass data, they would have both my passwords and OTP seeds. Lately, I’d been moving all my 2FA settings to LastPass to have all in one place. Passwords available on any trusted machine.Multi-platform support (Windows + Linux).To sum up, here are my prioritized requirements: There’s still one more requirement: we’re talking about a security solution that may give access to all my accounts, so I need that all this data to be locked so that only I can access it. Generating them on my phone is my preferred solution (for now at least). Therefore, the primal need for a password manager is to remember complex passwords in my stead.įor the purpose of greater security, I also enable 2FA 3 authentication on all online services I can, most often via TOTP 4, and I need to be able to generate those OTPs on-demand, wherever I am. When some providers have their own rules for passwords 2, it makes remembering even harder. More basically, using a different password for each service requires some memory. Still, typing long, strong passwords on keyboards whose layout is not always the same 1 is tedious, so a solution to autotype those passwords on machines I trust is welcome. I must theoretically be able to login without a password manager to help me.
#KEEPASSXC SYNCHRONIZE INSTALL#
Let’s start with what I don’t use it for: a key feature of password managers is the ability to generate strong, random passwords.Īs a software service company employee, I work on a lot of different computers, in a lot of different places, and I can’t always install the software that will make those passwords available. Still, since my faith in service providers has been (once more) shaken, I’ve looked to an open source that I’ll be able to fully manage. The announced changes to the free plan are, however, a big showstopper for me and, like many users, I chose to move away. Up until quite recently, I used LastPass for storing my passwords. A Self-Hosted, Open-Source, Equivalent Setup.
0 kommentar(er)
