I’d just like to request a new feature for all versions of the Password Manager.
This is just something I thought about while having a doomsday thought of what a hacker can do if they get my master password and are able to get access to my email for two-factor authentication. Access over 200(in my case) logins/security info with just one password/email combo?
My request is to put an optional and adjustable limit to how many passwords can be copied when your account is logged into before sending an additional request for verification, either e-mail, text, or some verification method. Also, if possible, the ability to be told which passwords were accessed, if your account is compromised, if possible.
Just to that at first: as others say, there are two main threats to your Bitwarden account/vault - 1. compromise (getting “hacked” etc.) and 2. loosing yourself access to the account.
So, with every additional verification step (for login or for accessing things inside the vault), the question would be also: what would you do, if you loose that “extra verification” yourself?
Two questions / thoughts to that:
either exporting the vault would immediately circumvent your suggestion
or you would also suggest, to make it impossible to do a full export? (without that “extra verification”?)
For that, you could consider changing to FIDO2-2FA (possible with security keys like YubiKeys etc., Windows Hello, mobile phones, …) for the Bitwarden account. That’s pretty much phishing-resistant.
When a Bitwarden vault is compromised, you should consider every account compromised. As written above: your whole vault could be exported…
Using BitWarden(or other managers) allows me to have different passwords everywhere without having to try to remember all of them, forgetting most, and losing access/resetting passwords.
That’s exactly what I am suggesting, stop a full export without some kind of verification. For me personally, I have never needed to do a full export and, usually, only need 3-4 passwords at time for login’s. Anything more than that would be odd for me and, in my case, I wouldn’t mind the extra steps of verification to try to raise security.
Yeah, but then if I lose that security key I’m screwed…
Yeah, I know that much, I was just hoping to make things easier if a full export couldn’t be done.
I think you misunderstood what I meant. I didn’t mean other accounts - I meant the Bitwarden account. For that, also not only compromise is a threat, but also loosing access.
And the more credentials you need, the more prone to error it get’s. Or in other words: At the moment, you need the email, master password and 2FA (or new device verification code) to have access to Bitwarden. With another additional verification code, you would need a fourth thing for full access to Bitwarden.
That could be more secure - but as just written, it could be also more insecure. (if you loose one of those four things, you would loose access to Bitwarden)
Before we get another misunderstanding here: you already have to provide a verification for export (with the master password - in the web vault also with an email verification code possible).
I think you should reconsider that. Practically everyone should do at least occasional (better regular) backups/exports of the vault. For various reasons.
Of course, you could loose it. That’s why one should always have second security key as a backup. And that’s why you have your 2FA recovery code on your emergency sheets. Then, you would no longer be screwed if you lost one security key.
BTW, you would also be screwed if you lost your master password - or access to your email for your Bitwarden-2FA. (That’s why that should also be on your emergency sheets.)
… and if a partial export would be possible? - I guess, then you would need a log about which items were exported and which not? - This would get very complex, I guess.
PS: There are some other Feature Requests (FRs) you might find interesting: