is it possible that keepass has a 2fa? ie if I enter my password master after an application like google authenticator or others can generate tokens. sorry for my English
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
A strong master key provides sufficient protection of a KeePass database for most users. Most users will not benefit enough from two factor authentication to justify the extra complexity and risk (see below) associated with it.
Two factor authentication is most suitable for situations where authentication can be performed on a secure remote device, e.g. a server, that houses the data store, e.g. password database. This situation does not apply to KeePass which is a local application that manipulates a local data store. Two factor authentication configurations that apply to KeePass are complex and therefore more susceptible to user error that can result in permanent loss of user data i.e. loss of all of your passwords.
No, google 2FA won't help.
2FA doesn't really work on a local encryption system because an attacker has full access to all of the information needed to decrypt.
cheers, Paul
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
is it possible that keepass has a 2fa? ie if I enter my password master after an application like google authenticator or others can generate tokens. sorry for my English
A strong master key provides sufficient protection of a KeePass database for most users. Most users will not benefit enough from two factor authentication to justify the extra complexity and risk (see below) associated with it.
Two factor authentication is most suitable for situations where authentication can be performed on a secure remote device, e.g. a server, that houses the data store, e.g. password database. This situation does not apply to KeePass which is a local application that manipulates a local data store. Two factor authentication configurations that apply to KeePass are complex and therefore more susceptible to user error that can result in permanent loss of user data i.e. loss of all of your passwords.
If you wish to implement a two factor authentication scheme you can install one of the Cryptography & Key Providers plugins such as KeeOtpProv plugin or KeeChallenge. These work best when used with a YubiKey.
Last edit: wellread1 2018-06-27
No, google 2FA won't help.
2FA doesn't really work on a local encryption system because an attacker has full access to all of the information needed to decrypt.
cheers, Paul