this post was submitted on 27 Oct 2023
1293 points (98.0% liked)

Memes

45660 readers
1267 users here now

Rules:

  1. Be civil and nice.
  2. Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.

founded 5 years ago
MODERATORS
 
you are viewing a single comment's thread
view the rest of the comments
[–] Rodeo@lemmy.ca 1 points 1 year ago (3 children)

That's the neat part, you don't.

Security and convenience are opposites. You have to decide if you want a local-only manager that is more secure, a sync service like syncthing that you can set up yourself, or a third-party cloud app like LastPass (which has been compromised at least once that I know of).

Personally I just do all my email and banking on my desktop at home, and it's actually only inconvenienced me a few times over the years.

[–] Paradachshund@lemmy.today 1 points 1 year ago (1 children)

Sticking to desktop only wouldn't be realistic for me unfortunately. Sounds like the solutions aren't quite there yet for an average user.

[–] 0xD@infosec.pub 2 points 1 year ago* (last edited 1 year ago) (1 children)

They are, just use a normal one (I use bitwarden) that you can access from everywhere and protect it with 2FA.

The goal is to have varied, secure passwords across everything.

[–] Paradachshund@lemmy.today 1 points 1 year ago

I've heard a lot of people mention that one so I think I'll check it out. Thanks for recommendation.

[–] itslilith@lemmy.blahaj.zone 1 points 1 year ago

the only thing that gets less secure is more devices potentially compromised, but the act of syncing shouldn't make it more dangerous by itself (if using a key file or a master password too long to be reasonably cracked), right?

or am I missing something?

[–] Hexarei@programming.dev 1 points 1 year ago

I store mine in a selfhosted Nextcloud instance accessible only via a Nebula overlay network (alternative to tailscale) and it's both convenient and secure.