Ansgar to AppleEnglish • 1 year agoMichael Tsai Blog - Is It Safe to Store Passwords and 2FA Codes Together?mjtsai.commessage-square18arrow-up123arrow-down10
arrow-up123arrow-down1external-linkMichael Tsai Blog - Is It Safe to Store Passwords and 2FA Codes Together?mjtsai.comAnsgar to AppleEnglish • 1 year agomessage-square18
minus-square@[email protected]linkfedilinkEnglish-1•edit-21 year agoIt definitely defeats the purpose. If you store them together there’s only one factor! Things you know, have, or are. It just becomes two things you know.
minus-squareglacialslinkfedilinkEnglish4•1 year agoPassword managers do have two factors: the vault (have) and the master password (know).
minus-square@[email protected]linkfedilinkEnglish1•edit-21 year agoThose factors need to be separate to be factors.
minus-squareglacialslinkfedilinkEnglish1•1 year agoIt depends on your password manager and sync method. With most if I take all your devices away from you, you can’t go to any public computer and access all your passwords using only what you know. You need to have one of your physical devices.
It definitely defeats the purpose. If you store them together there’s only one factor!
Things you know, have, or are.
It just becomes two things you know.
Password managers do have two factors: the vault (have) and the master password (know).
Those factors need to be separate to be factors.
It depends on your password manager and sync method. With most if I take all your devices away from you, you can’t go to any public computer and access all your passwords using only what you know. You need to have one of your physical devices.