Password managers sound like putting all your eggs in one basket.
Comment on Why Is Computer Security Advice So Confusing?
kill_dash_nine@lemm.ee 9 months agoIt’s pretty amazing how many people still remember and reuse passwords for everything. I think it is still as simple as people haven’t heard of password managers or they’re just too overwhelmed with adding all of their passwords to a password manager and then changing them to something unique.
snooggums@kbin.social 9 months ago
surewhynotlem@lemmy.world 9 months ago
This is why security is complicated: It’s all about trading risks. Are password managers secure? Yes, unless someone gets your database and can decrypt it. Is writing the password down secure? Yes, unless someone gets physical access to your system. Is memorizing your password secure? Yes, unless someone does some lead pipe decryption on your kneecaps.
For most people, a password manager is better than paper and memorizing.
GenderNeutralBro@lemmy.sdf.org 9 months ago
If you work at a company that provides a password manager, then it’s an easy choice for your work-related passwords. For personal stuff, though? There’s nothing out there I feel comfortable recommending that isn’t a pain in the ass.
Cloud services are mostly bullshit. LastPass got hacked hard earlier this year. OnePassword is no better. BitWarden is maybe better but self-hosting is obviously too high a bar and if you use their cloud service then you’re still giving all your passwords to a third party.
And then if you actually want it to be convenient you need browser plugins. Nah.
Offline solutions like Keepass are great but then you need to find a way to manually sync them across devices. Pick your poison.