The export is password encrypted already. I’ll see if there’s a good way to do it.
Comment on Peersuite p2p encrypted discord alternative
martinb@lemmy.sdf.org 4 weeks agoI feel like saving the password in the export is a bad idea if security is your thing
jerrimu@lemmy.world 4 weeks ago
martinb@lemmy.sdf.org 4 weeks ago
Fair enough, it lowers the risk. Are you doing key stretching? Ie. X rounds of pbkdf or whatever it’s called?
Andres4NY@social.ridetrans.it 4 weeks ago
@martinb @jerrimu I wrote the initial comment with the idea of saving just the username, but then figured "why not?" for the password. If the password is saved in browser memory (and based how I *think* the app functions, it would have to be), then it wouldn't be much different than saving a password in firefox's password manager (for example). Assuming reasonable crypto usage by the app, of course.