Memorize my password and use 2FAS for MFA for Proton Pass.
this post was submitted on 02 Jul 2025
1 points (100.0% liked)
Proton
7171 readers
4 users here now
Empowering you to choose a better internet where privacy is the default. Protect yourself online with Proton Mail, Proton VPN, Proton Calendar, Proton Drive. Proton Pass and SimpleLogin.
Proton Mail is the world's largest secure email provider. Swiss, end-to-end encrypted, private, and free.
Proton VPN is the world’s only open-source, publicly audited, unlimited and free VPN. Swiss-based, no-ads, and no-logs.
Proton Calendar is the world's first end-to-end encrypted calendar that allows you to keep your life private.
Proton Drive is a free end-to-end encrypted cloud storage that allows you to securely backup and share your files. It's open source, publicly audited, and Swiss-based.
Proton Pass Proton Pass is a free and open-source password manager which brings a higher level of security with rigorous end-to-end encryption of all data (including usernames, URLs, notes, and more) and email alias support.
SimpleLogin lets you send and receive emails anonymously via easily-generated unique email aliases.
founded 2 years ago
MODERATORS
I was thinking of going hardware, and I might still as a backup, bit I think I'll need a software solution as well for family sharing. I'll have to think this through a bit. Thanks.
I use Aegis as my 2FA for Proton and have my password memorized. Everything else, including all other 2FAs are in Proton Pass
Aegis is fine but you need to make sure you have a super reliable backup because losing your 2FA codes is an absolute nightmare. Losing dozens of them, you're going to spend weeks on the phone/emailing people to get access to your accounts and the solution is usually sending them pics of your ID.
I used Aegis a long time ago. It was solid. I think I moved away from it for sync reasons (or lack thereof), I'll need to take a look at it again. Thanks for sharing.
At the end of the day, if you want some sort of 2FA for your Proton account, you'll need another service (like Bitwarden), or you'd have to rely on less secure methods (like SMS).
Keeping your Bitwarden account and only using it to log in to Proton seems like a reasonable way to go.
It's "Proton Pass", not "Pass". The latter will lead to great confusion.
I use Ente Auth for all TOTP. It's free, encrypted, and actually provides the codes for the next cycle so you don't have to stare at it for 5 seconds waiting for it to tick over.
If you have your passwords and TOTP in the same place then you have no 2FA.
Yeah Proton Pass, I was using shorthand of sorts considering where I was posting.
Thanks for the recommendation.
Most services let you use a code that's a few seconds old, so no need to wait 5 seconds, just type in whatever you see
Didn't know that, thanks!
What is OTA in this instance? I use OTP with pass-otp but I suspect you're talking about something else.
One time authentication. Same thing, just different name.
Is pass-otp browser only?
Yubikey for me, I plug it into USB and tap the button. Or in some cases Yubi Authenticator App to generate the OTP if you aren't plugging it into the PC.