I thought comic book movies were in decline until the Batman came out. The question is if Marvel is willing to part from their generic formula so their movies feel fresh.
Marvel needs some good direction from a management level, they need to build an Avengers team of writers who can really think of an overarching plot and have an end goal. They keep introducing new characters and then just don’t use them at all (where is Shang Chi?), their IP is spread out too much across unnecessary TV shows, they need to get their budget under control because somehow everything costs a billion, and their end product is worsened by the fact that their VFX teams are being overrun. This is Kevin Feige’s time to shine more than ever and he needs to show Disney that he can earn that pay.
Don’t kid yourselves, regardless of all your ideals open source only works because it’s free from a monetary perspective.
Companies work on patches to Linux or other software because it primarily benefits themselves, and they only use Linux because it’s free. Companies create hardware on Linux because it’s free. They can manufacturer cheap devices and people will buy them because they were low cost primarily because of the use of FOSS software.
Nearly all of FOSS is funded by corporations whether you like it or not, for the reasons you want to hear or not. The only thing that drives people is money.
You should be safe as long as your master password isn’t small, less than 15 characters. The longer the password, the better. Personally what I do is use a pass phrase to make it easily memorable, and then use it as a base to inflate security somewhat artificially.
Wrap the pass phrase around in brackets or symbols; mix lower/upper case; replace (or add to) a word in your pass phrase with one from a random other language, so instead of hello you type bonjour. Bonus points if you are able to replace even a few letters in your pass phrase with fancy diacritics, or fuck it add an emoji or two.
Then again there are a LOT of other factors which go into security. Theoretically the lyrics of song are decent as a pass phrase but there’s not much point if everyone knows what your favourite song is, or if you are learning Spanish then you’ll replace the English words with Spanish.
Unless you’re in a position where you’re targeted by nations or are working extremely high profile jobs like CEO or digital security you should be safe really with all these but as I said there’s a lot to keep in mind.
2FA is in the name, 2 factor authentication. A “factor” can be considered as proof that you are who you are. The more the factors provided, the more concrete proof the system has that the user is legitimate.
What a factor is is a more complicated. It can be broadly put in 3 categories (there’s more but we’ll ignore for now) :
something you know, like a PIN/password
something you are, like biometrics/eye scanning
something you have, like an ATM card or phone
The 2FA you are thinking of is probably the 1st (a password you know) + a PIN sent to or generated by something you have (a phone). If the 2nd pin was some you had created by memory like a password rather than a remote system generated one then it would be considered same as the first factor, it wouldn’t be multi factor.
So yeah it’s important that you keep both factors as secure as possible. A good password + a phone to generate TOTPs. I mean theoretically you can keep a password of ABC and keep 2FA on so hackers wouldn’t be able to get into your system but let’s follow best practices yeah? Use a password generator to make complex passwords for a login and enable 2FA.