cross-posted from: https://infosec.pub/post/42164102
Researchers demo weaknesses affecting some of the most popular options Academics say they found a series of flaws affecting three popular password managers, all of which claim to protect user credentials in the event that their servers are compromised.…
I appreciate the air of publicity this story brings.
You probably can’t trust your password manager if it’s compromised
In other headlines: water is surprisingly wet.
Yeah, the title is not that informative.
KeePassXC ftw
I always keep my keepass databases offline for good
Bitwarden offers offline also. And self hosting I believe.
I need to search this KeePass. I read it in other comments, but I have never heard of it before.
KeyPassXC is the way to go, IMO. It is wonderful. The password db is stored locally on your disk. It integrates nicely with firefox and probably other browsers too. Open source, no spyware, “just works”.
It’s pretty good. I was using pass but keypassxc is easier. It also handles passkeys well. Here it is on Windows: https://portableapps.com/apps/utilities/keepassxc-portable. For Linux, just search for it in the package manager. Not sure about Mac.
In other news. Water is wet
