Password and MFA/2FA

Looking into options besides Bitwarden, in the Buy European craze, I went out to find stuff.

I found padloc.app, from Germany. Importing a Bitwarden export is easy.

Backups of your data are supported on the phone through Settings/Tools. Data are saved in CSV or an encrypted container. You're prompted to protect the export with a password and then you can store it to your device or any connected cloud service.

One thing: TOTP (One time password, MFA) isn't working (perhaps due to the free account) and it isn't available on the Android app yet (don't know about iphone).

So I went further and found 2FAS, with a mobile app and browser extensions. This looks promising. After creating an account you connect your phone and the browser extension (if you care for that).

2FAS offers to import your MFA codes from other applications on setup (Bitwarden is not supported, so be aware of that).

Backups of your passwords can go through Google Drive, but you can also export it to anywhere (your device, Nextcloud etc).

Logging into a site will send a push message to your phone which you can accept or deny (nice!) and the first time you select and confirm which application's code to use (you can name an entry what you want). After confirming the login, the extension will write the MFA code to the page. Check their site and watch the video, it's very clear and easy.

Differences.

• Bitwarden has an option to autofill fields. Padloc doesn't have that (yet?), so logging in somewhere is a bit more work.
• 2 apps instead of 1. I think security and safety is worth that.

I'm going to play with this some more.

---

Update: Proton Pass seems to be a good option as well. With built-in 2FA if you have a paid account (€36/year)