2023 was a record-breaking year for cybersecurity in a bad way. Ransomware payments hit a record high of $1.1 billion, which is likely to…

  • ebits21
    link
    fedilink
    English
    arrow-up
    48
    arrow-down
    1
    ·
    edit-2
    10 months ago

    I use Bitwarden for passwords. Just works so well.

    KeepassXC and KeePassium for TOTP codes. I keep the database in the cloud but sync a key with Syncthing that’s needed to unlock the database on the devices themselves.

    • Lem453
      link
      fedilink
      arrow-up
      13
      arrow-down
      2
      ·
      edit-2
      10 months ago

      Locally hosted bitwarden (vault warden) that is only accessible on your local network is the way to go. When a new sync is needed away from home, wireguard VPN to connect back in makes everything nice and secure. Otherwise most of the time the vault is cached to the device locally so you don’t need to phone home to access passwords.

        • ebits21
          link
          fedilink
          English
          arrow-up
          1
          ·
          10 months ago

          Yep, I think keeping TOTP codes in the same place as passwords defeats their purpose (no longer a second factor).

          Less convenient but more secure.