It’s integrated for convenience and suits my threat model. 2FA for the password manager is separate though. Isn’t the whole point of 2FA to secure your account even if an attacker get their hands on your login info? Keeping it separate is just another layer of protection, no?
“Just?” What do you mean, “just?” That’s entirely why we use non-browser pwd mgrs in the first place (and hopefully not Bitwarden with its incoming capitalist takeover from the CEO change), or else why bother, right?
It’s integrated for convenience and suits my threat model. 2FA for the password manager is separate though. Isn’t the whole point of 2FA to secure your account even if an attacker get their hands on your login info? Keeping it separate is just another layer of protection, no?
“Just?” What do you mean, “just?” That’s entirely why we use non-browser pwd mgrs in the first place (and hopefully not Bitwarden with its incoming capitalist takeover from the CEO change), or else why bother, right?
Sure man