What's the alternative for restricted logins?

[Prognathous]

Using Two-Step verification is less convenient. Using the master password is less secure. Is there an option for logging in from untrusted computers that would not put my master password at risk and would not increase my risk for account hijacking (due to the use of master password)?

Unless I'm missing something, anyone who used a duo of complex master password and an easy-to-type restricted password (and wants to avoid the inconvenience of Two-Step verification) will now have to (1) use their master password, and (2) change it to an easy-to-type string to maintain the same level of convenience. The new system is aiming to improve security, by is likely to reduce security for those who do the above, and I'm sure many would.

[Terry]

For those who do not want to use the 2 stage verification perhaps it could be set up so they can use another password instead of the main one, that way the account would still be secure as they don't have access to the main password.

Similar to what we had before they changed things....

[pjwalsh]

Master or restricted, 2FA is so much more secure than using just a password.

There seems to be the presumption here that it's 'okay' if a restricted password is compromised. With it, all online services using your FM address as backup can be reset and accessed. Is that vulnerability worth the 'convenience'?

[DumbGuy]

If a restricted or non-master pw is compromised, the attacker wouldn't have access to the master pw which can access the Password & Security screen for an account takeover.

Also, I don't give my various online services my exact FM email address. Instead I give them other email addresses I own that get forwarded to my FM account. Not foolproof, but more hoops the attacker must jump through to determine how to compromise my other services.

Anyway, in answer to your question of "Is that vulnerability worth the 'convenience'" -- I'd rather make that decision myself on a case-by-case basis depending on the computer I am logging into, which is why I loved the Alternative Logins feature. Most of the time 2FA is the better option & I used it, but not always.

But I definitely agree with you that 2FA is much more secure than just a password.

[hadaso]

Frankly I do not see how 2FA using either an app on my phone or an SMS message to generate the 2nd factor to login into Fastmail's app or the web interface on the same phone is much more secure than just using my master password on the same phone. It is the phone itself that generates the 2nd factor, and whoever has it also has the 2nd factor.
Also I don't think my phone is reliable enough to serve as a key without which I cannot access Fastmail.

[DumbGuy]

Quote:

Originally Posted by hadaso

Frankly I do not see how 2FA using either an app on my phone or an SMS message to generate the 2nd factor to login into Fastmail's app or the web interface on the same phone is much more secure than just using my master password on the same phone. It is the phone itself that generates the 2nd factor, and whoever has it also has the 2nd factor.
Also I don't think my phone is reliable enough to serve as a key without which I cannot access Fastmail.

How you can secure yourself in this situation: Use the PIN/password feature of your phone to lock the screen when not in use. If someone gets your phone and you happen to have been logged in to FM, they probably can't get to it.

[hadaso]

Quote:

Originally Posted by DumbGuy

How you can secure yourself in this situation: Use the PIN/password feature of your phone to lock the screen when not in use. If someone gets your phone and you happen to have been logged in to FM, they probably can't get to it.

I actually do use the lock screen this way, and also use another lockscreen (provided by an app called "Application protection") to protect some apps including Fastmail, but AFAIK these lock screens are considered rather poor protection.