You don’t know Tavis Ormandy? https://en.m.wikipedia.org/wiki/Tavis_Ormandy

tl;dr “If you want to use an online password manager, I would recommend using the one already built into your browser. They provide the same functionality, and can sidestep these fundamental problems with extensions.”

I can only speak for myself but his article confirmed my suspicion about any Password Manager, even Bitwarden and I never have or will use any online Password Managers. I create all my Passwords individually with my own algorithm in my head and can always recreate them.

  • @AlternateRoute@lemmy.ca
    link
    fedilink
    English
    12
    edit-2
    1 year ago

    Would be more relevant if you linked to something relevant to your argument not just the wiki on him.

    Travis actually recommends several https://lock.cmpxchg8b.com/passmgrs.html

    Good examples of simple and safe password managers are keepass and keepassx, or even pass if you’re a nerd.

    He doesn’t like password managers that are hosted or integrate with apps via plugins.

    • Eager Eagle
      link
      fedilink
      English
      7
      edit-2
      1 year ago

      the post title is actually the link you pasted here, which I think it’s even worse because it demonstrates a severe lack of interpreting skills from OP.

      • @AlternateRoute@lemmy.ca
        link
        fedilink
        English
        4
        edit-2
        1 year ago

        Ya the conclusion is very clear

        Conclusion If you want to use an online password manager, I would recommend using the one already built into your browser. They provide the same functionality, and can sidestep these fundamental problems with extensions.

        I use Chrome, but the other major browsers like Edge or Firefox are fine too. They can isolate their trusted UI from websites, they don’t break the sandbox security model, they have world-class security teams, and they couldn’t be easier to use.

        Also there are studies showing how bad mental formula passwords are, while computers are not truly random, humans are even worse.

        https://lifehacker.com/password-formulas-don-t-fool-hackers-1826238163