Installed Steam on a new computer. Signed in. It sent a passcode to my GMail. I signed into GMail. It wanted me to 2FA because I hadn’t signed into Google on that device. It sent a notification to my phone, which I never received. I had it resend the notification twice, still nothing. Tried again with my phone’s offline passcodes. Neither worked. Tried the QR code/Bluetooth connection, and that finally did it.

At least I got through in the end, but fuck, it’s annoying.

  • hello_hello [comrade/them]@hexbear.net
    link
    fedilink
    English
    arrow-up
    2
    ·
    9 hours ago

    which happened a couple years ago with LastPass

    That’s the thing, I use KeepassXC which is a local-only libre password manager. So someone would need physical access to my machine in order to copy the encrypted password database file. I’m the only one responsible for syncing the file across my devices.

    Why someone would trust a proprietary always-online password manager that requires personal information and probably has ties to the Zionist entity is beyond me.

    • quarrk [he/him]@hexbear.net
      link
      fedilink
      English
      arrow-up
      1
      ·
      2 hours ago

      Like most things, it’s a balance between security, convenience, and reliability. A local password manager is a great option and I’m glad it exists, but I wouldn’t recommend it for everyone. If your password manager is locally stored and you have a hardware failure (say, you live in Asheville and your hard drive is underwater with your house) then you’re completely screwed. A cloud option is a bit more disaster proof because those services typically have mitigation plans to prevent that kind of disaster. Plus you have the convenience of device agnostic passwords.