Submitted 2 weeks ago by ComicalMayhem@lemmy.world to nostupidquestions@lemmy.world
I keep seeing people highly recommend them, but I’ve always thought it wasn’t very secure.
More secure than write to your notepad or text file, for sure.
If you can keep password from your computer (best: just remember it without reuse 1 for everywhere, second best: write in your notebook, don’t reuse password).
Use KeePassXC on the computer, and KeePassDX on Android. Yeah, you need to manually sync the database (.kdbx) file, but it’s 1000x safer than any paid crap. Why? Their only motive is profit. FOSS nerds? Making a strong, good program.
It’s better than using the same few passwords everywhere. Passwords are being phased out though. The future is passkeys.
Very secure passwords written on a piece
I let Chrome deal with it, but wonder what happens if someone steals %appdata% these days.
/s ?
I don’t trust SaaS ones not because I don’t think they’re not doing all due diligence, but because a SaaS password manager is the juiciest of juicy targets and eventually someone will succeed in cracking one.
I personally use KeepassXC, which is a local password manager. Most of the benefits of a SaaS one with some extra work handling sync and backup yourself.
scytale@piefed.zip 2 weeks ago
Yes, but it depends on which one you use. Some are better than others. The ones that can be hosted locally (i.e. keepass) are the most secure because you are not relying on a third party to host your password vault for you. It would be helpful to know why you think they aren't very secure, so people can help clarify.