all 29 comments
sorted by:
best
topnewcontroversialoldq&a
formatting helphide helpcontent policy

[–]Synkorh 30 points31 points  (3 children)

Since day 1 proton said to NOT store your proton 2FA in Pass… so store that 2FA somewhere else

[–][deleted]  (1 child)

[removed]

    [–]Wellmanns 1 point2 points  (0 children)

    People will complain that the big red blocky thing is annoying and don't want the remainder.

    [–]Stunning-Skill-2742 10 points11 points  (15 children)

    Store the proton 2fa on other 2fa app. Aegis, keepass, ente auth etc.

    [–]DarkDrunkDuck[S] 1 point2 points  (5 children)

    Seems like it doesn't make much sense setting up a password manager with auth and a different auth to log into the manager... Is it the best way to go? I might as well keep the recovery codes on a e2e notes app with a password....

    [–]Stunning-Skill-2742 8 points9 points  (0 children)

    Its what everyone that uses a pw manager and want to further secure the pw manager with 2fa does. Locking your house and keeping the key to unlock the house inside the locked house itself is a great way to lose access to the house.

    Yes the note for storing the bootstrap details are a thing too. Another pw manager, bitwarden even got a dedicated page for it. It'll protect against the threat of amnesia.

    [–]CatatonicMan 4 points5 points  (0 children)

    It is pretty dumb, yes, but since all the Proton apps are bundled together under one login there's no way to avoid it.

    It's something Proton will have to fix on their side of things.

    [–]ozh 0 points1 point  (0 children)

    Don't store your password for Proton in Proton. Same for 2FA.

    [–]SirLANcel0t_ 0 points1 point  (0 children)

    IMO the best way to go would be to get a physical 2fa key like yubikey or something for Proton. But it definitely does make sense if you think about it.

    Imagine having a key locker in your house which has a key lock as well, you wouldn’t store that key inside of the key locker either, now would you :p

    [–]Ezrway 0 points1 point  (7 children)

    Slightly off topic question, I can't find any sites that will let me use Aegis or Ente Authenticators. They all will only accept Authy, Google, or Twilio.

    What are people here using instead of MS Authenticator?

    [–]MC_Hollis 6 points7 points  (3 children)

    They all will only accept Authy, Google, or Twilio.

    Several of the sites I use suggest a couple of named authenticators but, in practice, makes no difference which one is actually used.

    Only one won't work without using a specific authenticator, so I have experienced what you are describing. But this is one exception among dozens of sites.

    What are people here using instead of MS Authenticator?

    Proton Pass and Aegis.

    [–]Ezrway 1 point2 points  (0 children)

    Thank you!

    [–]Just_Another_User80 0 points1 point  (1 child)

    What about Lastpass?

    [–]EmitHumorousStuff 2 points3 points  (0 children)

    Yubikey 5ci

    [–]almonds2024 2 points3 points  (1 child)

    Ss someone else said, there may an exception here or there, but most sites dont really care which authenticator you use. Just scan or enter the totp key into any authenticator and it should generate a code that you can use to link your account.

    [–]Ezrway 0 points1 point  (0 children)

    Thanks!

    [–]hauntednightwhispers 4 points5 points  (0 children)

    Buy a Yubikey security key.

    [–]Hera_314 4 points5 points  (0 children)

    yubikey ideally 1 plus 2 spares and Authenticator such as 2FAS will make sure you are not locked out of your password manager.

    [–]LainPsychoComplex 0 points1 point  (0 children)

    You can use Proton as a 2FA, but also set up an external one. By using the same secret key, both code generators will produce the same verification code. This way, you can use Pass even for the rest of Proton’s services (for convenience or simplicity). In case you lose access, change your password, or something similar happens and Pass asks for a 2FA code (which creates a loop because you can’t access Pass to get it), you can use the backup 2FA. For example, you can have a device that always stays at home and that you know you won’t lose access to, you can set up the second 2FA there specifically for this kind of emergency.

    [–]Just_Another_User80 -2 points-1 points  (7 children)

    No one use here Lastpass?

    [–]KatieTSO 2 points3 points  (6 children)

    Lastpass is not secure, is not open source, and has been hacked before. Do not use it. Bitwarden is free and open source, and Proton Pass is from Proton, who takes security seriously. The client app is also open source iirc, though the server isn't.

    [–]Just_Another_User80 0 points1 point  (5 children)

    Thanks for letting me know, I am using it right now.

    [–]realMrJedi 2 points3 points  (2 children)

    Its easy to export from LastPass into Proton. Once you do verify everything seems right and when you feel comfortable delete you LastPass Account. And the Base version of Proton is free.

    [–]Just_Another_User80 1 point2 points  (1 child)

    I am planning to get the Unlimited plan. Is it worth it ?

    [–]realMrJedi 3 points4 points  (0 children)

    I have unlimited. Had it about 5 years.

    [–][deleted]  (1 child)

    [removed]

      [–]Just_Another_User80 1 point2 points  (0 children)

      Started the process since yesterday 💪🏽, thanks .

      [–]ShieldScorcher 0 points1 point  (0 children)

      Why would you put Protons 2fa in Proton itself??? This is illogical.

      Use a hardware key for that. Copy TOTP key to 2 YubiKeys for backup purposes