The Christmas break is a good time to take stock of your security posture - and also that of your nearest and dearest.

It has been twelve years since I moved away from my clunky command line password management tool and sprung for LastPass.

And it’s been at least two years since certain events made those in the know take the view that LastPass might not be the clever choice du jour any more.

Whatever the rights and wrongs of that, with Authy dropping their desktop app, I decided after some research to consolidate both the passwords and the second factors on 1password. So far, apart from a couple of glitches getting started, it has not disappointed. Top user experience, and a long overdue clean-up has now happened.

Yes, having the “second factor” be managed by the password manager which owns the first factor is a risk, but I’m satisfied they have a solid architecture and the convenience is a huge win and removes any friction at all from having TOTP 2FA enabled on sites which lack native support for FIDO/U2F/Yubikeys. It’s so easy your older and non-technical relatives could use it, and I suggest you help them do exactly that.