The export is password encrypted already. I’ll see if there’s a good way to do it.
Comment on Peersuite p2p encrypted discord alternative
martinb@lemmy.sdf.org 10 months agoI feel like saving the password in the export is a bad idea if security is your thing
jerrimu@lemmy.world 10 months ago
martinb@lemmy.sdf.org 10 months ago
Fair enough, it lowers the risk. Are you doing key stretching? Ie. X rounds of pbkdf or whatever it’s called?
Andres4NY@social.ridetrans.it 10 months ago
@martinb @jerrimu I wrote the initial comment with the idea of saving just the username, but then figured "why not?" for the password. If the password is saved in browser memory (and based how I *think* the app functions, it would have to be), then it wouldn't be much different than saving a password in firefox's password manager (for example). Assuming reasonable crypto usage by the app, of course.