Differences

This shows you the differences between two versions of the page.

--- security:authentication [2016/07/05 13:22] – [Management of password] cedric
+++ security:authentication [2016/07/06 08:16] (current) – cedric
@@ Line 7: / Line 7: @@
 Do not store passwords in the browser or on Internet.
-''pass'' can also generate passwords with ''pwgen''. Do not hesitate to generate strong passwords, since you won"t need to remember them.
+''pass'' can also generate passwords (with ''pwgen''). Do not hesitate to generate strong passwords for each services you are using, since you won't need to remember them.
+With ''pass'' the passwords store can be a git repository, consequently it is possible synchronizes your passwords between different computers.
 ====== Two Factor Authentication (2FA) ======
 Different methods:
-  * One Time Password (OTP) by SMS;
+  * One Time Password (OTP): by SMS, with Google Authenticator or backup codes;
   * specific application on your smarthpone or watch;
-  * Google Authenticator;
+  * YubiKey (my choice).
-  * YubiKey (my choice);
-  * and also backup codes.
 With the YubiKey you will be able to:
-  * to use the 2FA with services such as Google, GitLab, GitHub, Dropbox;
+  * use the 2FA with services such as Google, GitLab, GitHub, Bitbucket, Dropbox;
-  * to generate One Time Password;
+  * generate One Time Password;
-  * to unlock your smartphone;
+  * unlock your smartphone;
-  * to upload your GPG private key on it and then for example to protect your passwords store (''pass'' uses [[https://git.zx2c4.com/password-store/about | GPG for the encryption]]).
+  * upload your GPG private key on it and then for example to protect your passwords store (''pass'' uses [[https://git.zx2c4.com/password-store/about | GPG for the encryption]]).