2023 was a record-breaking year for cybersecurity in a bad way. Ransomware payments hit a record high of $1.1 billion, which is likely to...

2023 was a record-breaking year for cybersecurity in a bad way. Ransomware payments hit a record high of $1.1 billion, which is likely to

  • ebits21English
    471·
    8 months ago8 months ago

    I use Bitwarden for passwords. Just works so well.

    KeepassXC and KeePassium for TOTP codes. I keep the database in the cloud but sync a key with Syncthing that’s needed to unlock the database on the devices themselves.

    • Lem453
      132·
      8 months ago8 months ago

      Locally hosted bitwarden (vault warden) that is only accessible on your local network is the way to go. When a new sync is needed away from home, wireguard VPN to connect back in makes everything nice and secure. Otherwise most of the time the vault is cached to the device locally so you don’t need to phone home to access passwords.

      • tuhriel
        40·
        8 months ago

        I do it exactly like that, except that im connected via vpn most of the time, since my pihole is also located in my lan

      • Reuben
        20·
        8 months ago

        @bluetoque @ebits21 Because then every account is only as secure as your Bitwarden account. It become a single point of failure/vulnerability.

        • ebits21English
          10·
          8 months ago

          Yep, I think keeping TOTP codes in the same place as passwords defeats their purpose (no longer a second factor).

          Less convenient but more secure.