Install the Bitwarden browser extension to your browser if you haven't already. Instead of doing this, you should let Bitwarden generate strong passwords for you. However, it seems that you might still be using some variation of a single password that you are using everywhere. The reason why people should use a password manager is that they can have a strong and unique password for each site. I would not encourage using email for 2FA. Otherwise, use an authenticator app like Aegis (Android) or Raivo OTP (iOS). The most secure way is using a security key like YubiKey. Optionally, you could also format one full sentence from these four words, making it easier to remember.Įnable 2FA to your Bitwarden account. I would suggest using four random words generated by Bitwarden.
Make sure that you use a strong master password. However, the user has some responsibility to keep their account secure. Do you have any experience of the family plan though? I'm just wondering how easy/intuitive it is to share passwords amongst family members and so forth.īecause Bitwarden uses zero-knowledge end-to-end encryption, no one else, not even Bitwarden, has access to your passwords. I spend more than that on lunch at work each day so it's certainly very appealing to me to jump into this fully. Now you mention the main email though I'm inclined to make a new email all together and try to minimise the risk and then link everything to that but I'll evaluate the pros/cons of this as there'd be a lot of changing of accounts for their recovery methods etc but I appreciate your response.Īlso, with the price point of Bitwarden is impossible *NOT* to pay the yearly sub. if they got into your PayPal, eBay etc etc? You mention that if someone magically gains access to your Bitwarden that you can still recover every account but wouldn't you have to be pretty responsive to that situation to minimise any damage they can do? i.e. I've checked online and from what I can see, my passwords aren't leaked so I'm a little dubious to where people are getting my password(s) from and the emails themselves are genuine (unless its MITM or something along those longs) but either way, this has been long overdue. Bitwarden and my main email) but I'm also getting a lot of 2FA emails with codes to "complete my sign in" which is prompting me to completely overhaul everything I use. I've got 2FA is nearly everything I use (incl. Same here, I tend to find most of my passwords nowadays I'm just throwing a few numbers at the end and some punctuation too.
0 kommentar(er)
