this post was submitted on 11 Sep 2023
129 points (96.4% liked)
Privacy
31975 readers
265 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
Chat rooms
-
[Matrix/Element]Dead
much thanks to @gary_host_laptop for the logo design :)
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I wouldn't use any browser password manager, last time I even looked at one they were saving my passwords in plaintext!
Bitwarden, one pass, keepass, basically anything other than LastPass should be good!
without a master password, firefox just uses a simple scheme it can reverse. if you use a master password, though, then that password is needed.
chromium browsers now use windows credentials, if you have no password on a local windows account, then none is needed to extract the passwords from the browser. .
It seems I'm not up-to-date. What's wrong with LastPass?
Edit: nevermind. I just googled it. [https://www.notebookcheck.com/Ist-LastPass-noch-sicher-Experten-kritisieren-den-Passwortmanager.677484.0.html)(url) Here is an article about it (in German), for anyone else wondering.
Seems like I will have to find a way to move my vault to another password manager. I hope I can find a way of doing this safely without needing to do that manually... So I am grateful for any advice!
https://bitwarden.com/help/import-from-lastpass/
Here's how you do it with Bitwarden, in case you decide on that
Thank you! Bitwarden seems to be mentioned a lot here. I'm gonna look into it.
Other than the terrible security record? That they are proprietary.
I moved from LastPass to Bitwarden. It was quite easy to move everything over. I've been using Bitwarden for several years now and have no complains. I believe Bitwarden has a guide on how to move your content from LastPass.
Edit: I use Bitwarden on both pc and mobile. No issues.
I migrated from lastpass to pass using pass-import. Worked wonders.
thank you for the rec! a small doubt even though they are in plaintext, when the hackers can't log in aren't they safe tho or is it easy to hack?
Most viruses now start off by scooping up all saved browser passwords automatically then sending them to a remote server. So if one of those ever goes off on your system you are at quite a risk. Especially since there are really good other options that aren't vulnerable to that