(blog.singleton.io)

274 points alexmolas | 1 comments | 26 Jul 24 19:20 UTC | HN request time: 0s | source

Show context

627467 ◴[26 Jul 24 23:33 UTC] No.41083265[source]▶

I love this, and have thought of doing the same with a dumb smartwatch but... is it good opsec to have top so visible/available? What about losing the watch or getting stolen?

replies(4): >>41083301 #>>41083310 #>>41086601 #>>41087016 #

mcsniff ◴[26 Jul 24 23:40 UTC] No.41083310[source]▶

>>41083265 #

Eh, I keep TOTP codes on my Pebble and am fine with it, they are labeled in such a way that doesn't make it obvious what services they're for.

There's basically no lock mechanism or security on a Pebble, but it's just a second factor.

If you have my randomly generated password, have done your intel to know I might have the TOTP on my wrist, and can physically steal my watch, you've got me beat and I'm okay with that for the convenience it provides.

replies(2): >>41084767 #>>41085645 #

collingreen ◴[27 Jul 24 06:14 UTC] No.41084767[source]▶

>>41083310 #

All security is a balance if the threat risk and the potential loss. I love that you have a mix that works for you while staying reasonable about it.

We all have terrible, terrible tumbler locks on our doors because they are good enough to stop the extremely casual attempts but anywhere with unbarred windows is one rock from "unlocked" and we're generally fine with this for 99% of things.

replies(1): >>41084781 #

1. eurleif ◴[27 Jul 24 06:18 UTC] No.41084781{3}[source]▶

>>41084767 #

Security film is another option for windows.

↑

TOTP tokens on my wrist with the smartest dumb watch