top | item 16700490

(no title)

surfearth | 8 years ago

I've been using 1Password since Version 3 in 2010 and was originally skeptical about the move to a SaaS model. The value I (and now my wife) gets from the Family Plan is easily worth it - it just works and we can easily share some things while keeping others to ourselves.

One pro-tip I learned last year is to replace Google Authenticator with 1Password's 2FA solution. It is really well implemented and copies the 2FA code to the clipboard when you fill in a login, and then removes it a minute or so later. You do need to make sure you're 1Password recovery information is someplace secure because you're in a bad place if you ever lost your devices.

discuss

eddyg|8 years ago

Totally agree on both counts: the value of being able to put certain credentials, documents, notes, etc. in a "Shared" vault is great.

And definitely the TOTP integration. I love how after you hit Cmd-\ to fill in your username and password, it automatically copies the TOTP value to the clipboard for instant-pasting on the nice screen. Such a great feature.

latexr|8 years ago

This kind of defeats the point of 2FA. With your current setup, if anyone accesses your vault and gets your password they also get your 2FA key.

At that point it’s no longer two-factor, it’s just two steps in the same authentication.

AGKyle|8 years ago

We've written about this in the past, see a blog post by our chief of security here:

https://blog.agilebits.com/2015/01/26/totp-for-1password-use...

Hope that clears things up for both of you. Let me know if you have any questions though!

Kyle

AgileBits