18
Keep proton pass and proton mail with single account? (lemmy.ml)
submitted 7 months ago by mobsenpai@lemmy.ml to c/asklemmy@lemmy.ml
9 comments fedilink hide all child comments

Proton pass

Guys I use proton mail and proton pass but the issue I have is that how can I have a secure password for proton mail with 2fa if I use proton pass? If I have a less difficult password then I am lowering my security and If I want to have a 2fa (with local encrypted file) then I have to save it on some secure cloud, which for me is proton drive or mega then again I have those passwords saved in proton pass so I would have to login to proton pass first, If I lower password of those apps then again it risks security. ( I am sorry I am so confused). Please help!

all 10 comments
sorted by: hot top controversial new old
[-] Evkob@lemmy.ca 6 points 7 months ago

Sounds like it's time for some correcthorsebatterystaple!

[-] CapillaryUpgrade@lemmy.sdf.org 5 points 7 months ago

Use a passphrase (not a password) and a physical security key, like a yubikey. It also supports TOTP or whatever 2fa Proton uses, you just connect it with a laptop or phone and it gives you a key.

A physical key is much more secure than 2fa from a password manager (although both are probably fine)

[-] lauch@feddit.de 4 points 7 months ago

In my opinion the centralization of all your data and secrets to one single company is itself a security risk. When I realized that, I completely stopped using proton. I see 2 main issues with using all-proton: 1. they could turn evil (like a lot of big companies do) 2. They can have exploits which then can effect all your data / secrets. I switched to have a different company for each service and I don't really pay more than what I would have to pay proton to get the same things.

[-] governorkeagan 3 points 7 months ago

I use all of Proton’s products as well. I’ve found a Yubikey works best for the 2FA codes. I’m also working on having a backup password manager

[-] therebedragons@lemmy.ml 2 points 7 months ago

Im in the same boat. They really need to allow a second password for the pass database.

[-] HKayn@dormi.zone 2 points 7 months ago

Sorry if it's a dumb question, but why not just change your account password to something you'd use for a pass database?

[-] Cinner@lemmy.world 1 points 7 months ago

Yeah that's already how it works. That's why in certain browsers logging in takes forever if you have a ton of mail, it has to decrypt the metadata of each email, then the contents when you click that email. Try enabling email content search on proton with over 5k emails.

this post was submitted on 16 Jan 2024
18 points (95.0% liked)

Asklemmy

43324 readers
972 users here now

A loosely moderated place to ask open-ended questions

Search asklemmy 🔍

If your post meets the following criteria, it's welcome here!

  1. Open-ended question
  2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions. Assume best intent and be excellent to each other.
  3. Not regarding using or support for Lemmy: context, see the list of support communities and tools for finding communities below
  4. Not ad nauseam inducing: please make sure it is a question that would be new to most members
  5. An actual topic of discussion

Looking for support?

Looking for a community?

~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~

founded 5 years ago
MODERATORS
Cloak@lemmy.ml
mekhos@lemmy.ml
tmpod@lemmy.pt
14specks@lemmy.ml