I went in to delete mine. Was forced to put in my real name and current employer without any way to opt out. So for a short brilliant moment I was Bobo Bobolicious of Bob’s Boat Oars
You must log in or register to comment.
I don’t know if I have an account, but this is a good reminder to go through and review all of my accounts (everything’s in my password manager). I have way too many, so I could probably trim them.
Thanks for the reminder!
1 device: Keepass
2 or more devices Keepass + Syncthing
2 or more devices & extremely easy for new users: Bitwarden.
That works too. I have 4 devices (laptop, desktop, work computer, phone), and sometimes need to login on a device that’s not mine. I use Syncthing for other things, but Bitwarden has some nice features (e.g. organization to share passwords with my wife), so I stick with it.
What’s a good multiplatform password manager these days? I’ve been meaning to move away from LastPass for forever (and update my passwords in the process), I just haven’t found the time to sort through all of that.
Say what you want about old timers but [ Notebook and Pencil ] has a 100% success rate if the attacker doesn’t have physical access.
Actually, that would make it easier to fall for a phishing page. My browser extension will only offer to fill example.com. If I’m on exarnple.com, it won’t. This makes me say “hmm, why no match for this page? ah! the domain is different”. With a notebook, I’d happily type the password in just the same.
PEBKAC isn’t really an argument greater than a Strawman. If you’re saying operators can’t be trusted to be competent you might as well argue that these people shouldn’t own computers or cellphones, or kitchen knifes or other things that require a minimum competence.
Sure, but that’s where the cross platform comes in, because I’d rather not have to lug said notebook around with me.
Convenience and Security are different goals. You can either put security before or after convenience.
I’m gonna go for taking reasonable action of fortification and then try my luck.
And negative, usable security is a delicate balance of security and convenience. It employs various layers of usable redundant security methods that keep things to the best possible and reasonable level of security available, while also maintaining useful defense. If I were doing anything rendering me a target of a malicious actor, that’s a different story. But run of the mill individual passwords for each website/service coupled with 2FA along with password database encryption is enough to keep a nobody like me reasonably comfortable.
And an encrypted vault probably has a near 100% success rate even if the attacker has access to it given a sufficient vault password.
I’m not typing a 64-character random string from a notepad everytime I log in somewhere tho
I really like BitWarden. Benefits:
- open source - can even host your own storage server if you want (e.g. vaultwarden)
- security audited
- free - has paid tiers, but you probably don’t need them
- apps - Desktop (Linux, Windows, macOS), browser extension (basically all of them?), mobile, command-line, web app
It has some neat features and hasn’t annoyed me too much yet.
Perfect, thank you!
I just moved from Dashlane it was painless
Also nearly complete rolling out Keypass/Webauthn compatibility!
Bit warden
I’ll have a look, thanks
KeePassXC
Its a long journey, but totally worth it. When I chose to go fully self-hosted, I had around 1,200 accounts and passwords. First I used a temporary fake emailnsite to change my email and all the personal data I could from all the sites I wanted out of my life, then closed each account. Did a checkout wherever I could too. Then went into each account I wanted to keep where I was using a gmail address, changed my email to an alias (proton mail) and created a new random password for each (Bitwarden self-hosted). I’m down to about 100 accounts, including everything in my 2 jobs. The level of freedom I feel is unspeakable.
I thought I was bad with ~300 logins… I’m going to follow in your footsteps, teach me your ways sensei. :)
https://temp-mail.org/en/ That site, bitwarden (self-hosted preferably, but an account with them works too), and you’ve got all the tools you’ll ever want. If you also want to “change” your phone number on the sites you’re leaving (that’s always a good idea as well), you can try https://quackr.io/ but I’m not sure how good it is. I just found that site, and honestly can’t remember what I used for that. All I remember is that it was a free trial of an app for 7 days, and I made sure to finish that before the trial was over. And I’m no sensei, call me Master “4th run of Horizon Zero Dawn” 🤣🤣. Just kidding, I’m just a guy that, like most of is, got tired of all the BS out there these days. I am, though, on my 4th run of that game. Good luck man, you won’t regret doing this.
