rpaulson

My feedback

9 results found

  1. 1 vote
    0 comments  ·  Proton Pass » New feature  ·  Admin →
    How important is this to you?
    rpaulson shared this idea  · 
  2. 6 votes
    How important is this to you?
    An error occurred while saving the comment
    rpaulson commented  · 

    I would like to add an important point that I overlooked in my initial comment.

    The combination of "Proton master password + extra password for Proton Pass" is somewhat similar to the "1Password secret key + 1Password master password" setup, but it has a significant flaw, in my opinion.

    With 1Password, if I store my secret key, my 2FA secret, and my master password within the app, I can ask a trusted person (someone I would also grant emergency access if that feature were available) to securely store my secret key and 2FA secret in their password manager. In the event that I get locked out of all my devices, this trusted person could use those two pieces of information to help me regain access to my account. Crucially, while both secrets are necessary for access, they are not sufficient on their own. As long as I continue to use a strong master password, the trusted person cannot gain full access to my account.

    However, this setup is not possible with Proton. If I use the extra password for Proton Pass as my main password to access the password manager, I cannot share my random, high-entropy Proton master password (which is stored only in Proton Pass) along with the 2FA secret with a trusted person. Doing so would grant them access to all my other Proton services, something I obviously want to avoid.

    An error occurred while saving the comment
    rpaulson commented  · 

    I also like the secret key feature, but I guess, if you set up an extra password for Proton Pass you can think of the Proton master password as your secret key. You'll only need it to sign in (similar to the secret key and 1Password). Afterwards you use the extra password (similar to the 1Password master password) to unlock your vaults. So even if, for example, a camera records you typing your extra password, you should be fine, as long as you have a high entropy Proton master password and a potential attacker doesn't get hold of a device that is locked but where you're signed in already.

    rpaulson supported this idea  · 
  3. 4 votes
    How important is this to you?
    rpaulson shared this idea  · 
  4. 321 votes
    How important is this to you?
    rpaulson supported this idea  · 
    An error occurred while saving the comment
    rpaulson commented  · 

    +1

  5. 6 votes
    How important is this to you?
    rpaulson supported this idea  · 
  6. 23 votes
    How important is this to you?
    An error occurred while saving the comment
    rpaulson commented  · 

    I also miss a feature that allows you to easily distinguish between two accounts.

    A simple workaround is to create a filter in each account that applies a label "Account1" and "Account2" with two different colors to all incoming mails. Not the ideal solution, but at least there is a visual indication of which account is active.

    rpaulson supported this idea  · 
  7. 16 votes
    How important is this to you?
    An error occurred while saving the comment
    rpaulson commented  · 

    I agree. It's currently the only reason that stops me from subscribing to Proton Family.

    Proton Unlimited (1 user) = 3 domains
    Proton Duo (2 user) = 3 domains
    Proton Family (6 user) = 3 domains

    Makes no sense to me =)

    I get that it's maybe not necessary to have 6 x 3 = 18 domains, but it should upscale at least a little bit compared to the individual plan.

    rpaulson supported this idea  · 
  8. 210 votes
    How important is this to you?
    rpaulson supported this idea  · 
  9. 21 votes
    How important is this to you?
    rpaulson shared this idea  · 

Feedback and Knowledge Base