Hacker News new | ask | show | jobs
by vena 1241 days ago
did you fully log out/in or just lock/unlock?

iirc locking with BW doesn’t do what one might expect wrt encryption state.
2 comments
ywain 1241 days ago
Changing the number of iterations should automatically log you out on all devices. At least it did for me.
link
vena 1241 days ago
oh good, didn’t know if it would do that/force a cache invalidation for clients
link
sircastor 1241 days ago
It forced me out of all my logged in instances. I had to login to everything. With my master password and my 2nd factor.
link
orra 1241 days ago
That's important to realise, in case your (normal) second factor is a different Bitwarden device!
link
sircastor 1240 days ago
I didn't even think about this. My 2nd factor is through a different app, but if I'd been using BitWarden's TOTP I wonder if I would've been stuck.

A good reminder to also have printed (or something) OTPs accessible in a safe place in case you need them.

link