The export is password encrypted already. I’ll see if there’s a good way to do it.
Comment on Peersuite p2p encrypted discord alternative
martinb@lemmy.sdf.org 2 months agoI feel like saving the password in the export is a bad idea if security is your thing
jerrimu@lemmy.world 2 months ago
martinb@lemmy.sdf.org 2 months ago
Fair enough, it lowers the risk. Are you doing key stretching? Ie. X rounds of pbkdf or whatever it’s called?
Andres4NY@social.ridetrans.it 2 months ago
@martinb @jerrimu I wrote the initial comment with the idea of saving just the username, but then figured "why not?" for the password. If the password is saved in browser memory (and based how I *think* the app functions, it would have to be), then it wouldn't be much different than saving a password in firefox's password manager (for example). Assuming reasonable crypto usage by the app, of course.