It was one of the easiest to setup and it works flawlessly. I’m a bit paranoid about losing my data even with the backups… Any recommendation?

  • JurassicPork@lemmy.one
    link
    fedilink
    English
    arrow-up
    0
    ·
    2 years ago

    You may have just inspired me to do the same lol, I’m self hosting most of my other things… For some reason, keeping my own data safe with bitwarden is kinda freaking me out too lol

    • balance_sheet@lemmy.worldOP
      link
      fedilink
      English
      arrow-up
      0
      ·
      2 years ago

      TOTP function is what really made it happen. It brings me so much joy to have one, self hosted service to do everything login related compared to using Authy too. I was way too invested in Authy which was never comfortable for me. I now found peace.

      • cyanide@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        2 years ago

        Is having your passwords and TOTP in one place recommended? I would’ve thought that having both separate would be more secure.

        • Widget@kbin.social
          link
          fedilink
          arrow-up
          0
          ·
          2 years ago

          It still defends against one failure mode (the website gets hacked but you’re ok) but yeah, obviously if you get hacked and the hacker knows how to get your vault out then you’re 100% screwed.

          My suggestion is always hardware 2FA, even though it’s not as mature as the other systems. Personally I have two Yubikeys (in case one breaks/gets lost) but it does mean that I need to add TOTPs to both of them each time I add a new 2FA.

          • boothin@kbin.social
            link
            fedilink
            arrow-up
            1
            ·
            2 years ago

            I’m fairly certain hardware based 2fa has been around since the early 90s maybe even earlier. It’s not the maturity that’s the issue, as I’m fairly certain its significantly older than application based, but that it’s extremely inconvenient for the user to have to buy a physical key and keep it safe