I use keepass (yes, i am fully aware having the password and second factor together is bad). The only defense i have is that my database is never uploaded to the cloud and is synced either via flash drive or syncthing. Also my master password is over 20 characters with lower, capital, numbers, and symbols.
I have the same setup. But you can avoid the risk of both being in the same place by having a passwords only DB on your pc and a TOTP/Auth only in your phone (or also in PC but with different master pass and usually closed)
Yeah, I currently do something similar to this. I’m actually thinking of getting a pair of physical hardware keys/authenticators. That way I can toss one in a safe deposit box, if I should randomly end up dead while climbing a mountain pass.
Well, TIL it’s not a good idea to have passwords and 2FA in the same place. I use 1Password and have had almost all my 2FA’s in there since they added support for it.
I use keepass (yes, i am fully aware having the password and second factor together is bad). The only defense i have is that my database is never uploaded to the cloud and is synced either via flash drive or syncthing. Also my master password is over 20 characters with lower, capital, numbers, and symbols.
I have the same setup. But you can avoid the risk of both being in the same place by having a passwords only DB on your pc and a TOTP/Auth only in your phone (or also in PC but with different master pass and usually closed)
Yeah, I currently do something similar to this. I’m actually thinking of getting a pair of physical hardware keys/authenticators. That way I can toss one in a safe deposit box, if I should randomly end up dead while climbing a mountain pass.
Another one with almost the same setup here (but with keepassXC)
Well, TIL it’s not a good idea to have passwords and 2FA in the same place. I use 1Password and have had almost all my 2FA’s in there since they added support for it.