Currently I use Bitwarden for storing passwords and Aegis for 2fa. Is is okay to store recovery codes in my Bitwarden vault or I should store them in somewhere else like Tresorit, Dropbox with cryptomator.

  • Platform27
    link
    fedilink
    English
    arrow-up
    5
    ·
    edit-2
    11 months ago

    Depending on your threat model, consider printing them out. You’ll have a physical copy of your keys, not tied to any electrical good. Even if they get stolen, they’re not usable, due to them not knowing your password.

    Alternatively keep a digital pdf, or txt document with them inisdie. Save that document on a a USB drive or SD card. You could save it on your phone, but it’s best to keep your backup codes away from your normal 2FA codes.

  • Darorad@lemmy.world
    link
    fedilink
    English
    arrow-up
    2
    ·
    10 months ago

    I use an encrypted file (properly backed up) and the password in my safe deposit box (in case of death)

  • Brickfrog@lemmy.dbzer0.com
    link
    fedilink
    English
    arrow-up
    1
    ·
    11 months ago

    Store them offline. A simple USB stick with screenshots of your QR codes & backup codes would cover this.

    Some people also print them out to keep offline but you’d need a printer handy to do that.

    TBH I’ve never understood why someone would store backup/recovery codes in the same application they store their passwords in. If your password storage is compromised then you’d indeed be completely and utterly compromised when the attacker also has your backup/recovery codes.