this post was submitted on 13 Oct 2025
125 points (97.7% liked)
Selfhosted
60071 readers
548 users here now
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.
Rules:
-
Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.
-
No spam.
-
Posts here are to be centered around self-hosting. Please ensure it is clear in your post how it relates to self-hosting.
-
Don't duplicate the full text of your blog or git here. Just post the link for folks to click.
-
Submission headline should match the article title.
-
No trolling.
Resources:
- selfh.st Newsletter and index of selfhosted software and apps
- awesome-selfhosted software
- awesome-sysadmin resources
- Self-Hosted Podcast from Jupiter Broadcasting
Any issues on the community? Report it using the report flag.
Questions? DM the mods!
founded 3 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
The point of 2FA is "something you have" and "something you know" to enter a secured system.
If you put both of those into one system that is accessible by one password, the whole concept is defeated.
My threat model isn't having someone take my computer and log into stuff so my concern when using 2FA is more about them having gotten hold of a password remotely. But a TOTP makes that password pretty hard to use, no matter where it's stored. And my BW is also protected by a Yubi/password combo, so I guess I'm just vulnerable to having that beaten out of me.
The other issue with this - If you lose access to that one system, you're SOL. It's a single point of failure.
That I could accept as a good reason.