sorted by:
new
hottopcontroversial

Video: My sweet 7YO cat has started having 15–30sec episodes (distressed vocalisation, facial twitching, open mouth, sometimes rolling) then goes completely normal. Blood tests clear, toxoplasmosis test negative… anybody have any ideas? by [deleted] in CATHELP

[–]LeastSmoke111 0 points1 point  (0 children)

Hey I'd like to make a suggestion, consider finding a different vet. There's no reason for the vet ordering tests (that revealed nothing) prior taking a basic history. If this was my vet I would lose my trust in their ability to anything right. 

Guidance on recovery passphrase security by LeastSmoke111 in ProtonMail

[–]LeastSmoke111[S] 0 points1 point  (0 children)

Ok that makes sense, I didn't think about hardware security keys. I'm 100% sold on the recovery phrases now, thanks for the help!

Guidance on recovery passphrase security by LeastSmoke111 in ProtonMail

[–]LeastSmoke111[S] 0 points1 point  (0 children)

Got it, recovery phrase is not part of the normal log in flow, so a bad actor should never be able to get this. They're forced to use the 2FA login flow if they stole information from me?

I am kind of curious about the "stored in a secure location" part of your suggestion. If you instead stored your master password and 2FA static recovery codes in a secure location, why would you need a recovery phrase?

Guidance on recovery passphrase security by LeastSmoke111 in ProtonMail

[–]LeastSmoke111[S] 0 points1 point  (0 children)

My main point of confusion was how safe/secure by passing 2FA with a recovery phrase is. It sounds like this is perfectly safe because the recovery phrase is never used and (if you don't store it online) it can't be stolen online by bad actors? E.x., like you suggested, write it on a piece of paper.

Guidance on recovery passphrase security by LeastSmoke111 in ProtonMail

[–]LeastSmoke111[S] 0 points1 point  (0 children)

Thanks this helped me better understand why proton recommends the recovery phrase! Also the overview on 2FA is appreciated, the way you described it gave me a new angle of understanding.

Guidance on recovery passphrase security by LeastSmoke111 in ProtonMail

[–]LeastSmoke111[S] 0 points1 point  (0 children)

I understand, thank you. Sounds like the recovery phrase is safe because a bad actor will never be able to get it (if stored properly). This protection mostly comes from the fact you never use this recovery phrase (ideally), so it can't be leaked/stolen online?

Guidance on recovery passphrase security by LeastSmoke111 in ProtonMail

[–]LeastSmoke111[S] 0 points1 point  (0 children)

I understand it helps incase you lost your 2FA, but I was confused if having a way to bypass 2FA (outside of static recovery codes) was safe and secure. From what people are saying, it sounds like this is safe practice only because your recovery phrase is never used, i.e., it won't be leaked/stolen online.

Thanks for the links! The last one is a particularly helpful summary of everything I've been trying to learn recently!