But you have if your password manager is compromised, because now they have the password and the TOTP codes.
The act of just mashing in a six digit code doesn't make anything more secure by itself. It's the origination, separation, and temporal nature that makes it useful.
I think it is less secure - for the single case of the password manager being compromised). But I think it is still 2-factor - the thing you know (the password) and the thing you have (proof that you had control of the device (or eco-system) the TOTP seed was created on).
So if you've memorized an uncrackable password for a password manager whose architecture you trust is secure, and use a third party TOTP provider (or a hardware key) for the password manager login I think its as good as using a 3rd party TOTP provider for everything. And a lot more convenient.
Why in gods name have they decided to do this I don't want to manually type in codes. Or have to recreate 10+ accounts. Why can't I pay money to keep using it?? Has anyone tried any of the alternatives?
I've just read the ios part though and how it will work on the m1 macs so are they just sunsetting desktop support for intel? is that more accurate?
