Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Bitwarden does a decent job of storing and syncing TOTP codes. Make sure you always use a long password with Bitwarden though, to avoid a known and unpatched issue with their password-based key derivation.


Oh, didn’t know BitWarden did it. That’s my password manager :)


What issue is that?


CVE-2019-19766

https://github.com/bitwarden/server/issues/589




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: