Mullvad, IVPN, Proton, AirVPN, or Windscribe are all fine. Depending on how much stock you put into audits the first three are probably a tier above for privacy.
Imprint9816
joined 1 year ago
What don't you like about IVPN? Audited, open source, great reputation. I don't even use them but seems odd to count them out.
Meanwhile ryujinx be like "nothing to see here"
Lol OK. Seems like its to much for you to consider you poorly communicated your point anyway.
I think if people read that comment and think they are being called dumb, that's completely on them and probably a good time to look themselves in the mirror.
Nothing wrong with the design. Its literally just making thing easier at no cost to the user.
"Basically then it degrades to a very strong password that can’t easily be phished."
I'm disagreeing with this, in that you are still (hopefully) using 2FA with your vault. Therefore whatever your accessing in that vault whether its a TOTP token or a password is still protected by MFA and not just a "very strong password".
Putting a TOTP token inside a vault protected by a strong password and another form of authentication is no less secure then having it be separate from the vault.
Not really. You still should be using MFA to access the vault itself before you can even get to the Token.
Yes but you would still have 2FA.
You would still be using 2fa to access your vault. So in effect anything in that vault has more then 2 factors of authentication as it requires MFA just to get to the password.
Yes but you would still have 2FA.
You would still be using 2fa to access your vault. So in effect anything in that vault has more then 2 factors of authentication as it requires MFA just to get to the password.
Another case of a user with terrible opsec that proton will end up being blamed for.