How are you storing passwords and 2FA keys that proliferate across every conceivable online service these days?

What made you choose that solution and have you considered what would happen in life altering situations like, hardware failure, theft, fire, divorce, death?

If you’re using an online solution, has it been hacked and how did that impact you?

    • subtext@lemmy.world
      link
      fedilink
      arrow-up
      11
      ·
      4 months ago

      And it is wife / parent / grandparent approved in my household!

      It’s good enough that once I taught my mom to use it, she then went and taught my grandma and now we’ve got the whole fam on a family plan. It’s seriously so good.

    • tmpodMA
      link
      fedilink
      arrow-up
      6
      ·
      4 months ago

      BitWarden is really good. Has (nearly*) everything I want, works well across all platforms and the free plan is very featurefull. Even though I don’t really use any of the premium features, I still pay for the plan, to help fund development, it’s only 10€ a year.

      • I say nearly because I’d love to have some form of autocomplete in Linux Wayland, outside of the browser extension. I believe one of KeePass apps does this (but only for X?)
      • mat@linux.community
        link
        fedilink
        English
        arrow-up
        2
        ·
        4 months ago

        You can kinda get autofill via a program called rofi-rbw on Wayland desktops (using wtype), but I found at least on Hyprland it often misses the field or the start of the password. I’d like to see a more consistent solution but definitely not via the official Electron app…

        • tmpodMA
          link
          fedilink
          arrow-up
          3
          ·
          4 months ago

          Another commenter said goldwarden implements that through the Remote Desktop XDG Portal, which only GNOME and KDE support at the moment (wlroots doesn’t implement it yet).

        • tmpodMA
          link
          fedilink
          arrow-up
          2
          ·
          4 months ago

          Oooh, that looks very neat, thank you!

    • jet@hackertalks.com
      link
      fedilink
      English
      arrow-up
      3
      ·
      edit-2
      4 months ago

      Seconded, plus hardware keys with passkeys disabled. Depending on your threat model, you might want your hardware keys to be a second factor, not a replacement for all the other factors. Passkeys do not fit into my threat model, as they are implemented as identity and password replacements rather than supplements

      Bitwarden has an emergency contact who can access a vault after 2 weeks if you don’t deny it.

      https://github.com/cyphar/paperback is great for a printed analog option as well. You could put your vault key into a multi paper printout, distributed amongst trusted people, so you need a quorum of them to get your secrets if you’re gone. Or get access to the family Google photos library, or whatever

      • Mike Wooskey@lemmy.thewooskeys.com
        link
        fedilink
        English
        arrow-up
        4
        ·
        4 months ago

        Thirded. I self-host it (actually the Vaultwarden fork) and use it on desktop browsers, as a desktop app, and as and Android app (F-Droid). I also store secure notes in it (e.g. end of life instructions for my partner). Very powerful and versatile, and AFAICT, secure.