this post was submitted on 08 Jul 2023
-26 points (11.8% liked)
Technology
59358 readers
6724 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I tried his "try this example if you have NordPass" page, and it didn't do anything in Brave mobile other than load a blank new tab. Maybe they've changed their mechanism, or maybe I should be less lazy and try it in another browser. For me on NordPass and Android, though, the password selection is shown on the keyboard, not within the content area.
I also don't know about his claim about the invalidity of any vendor's "we can't see your passwords" claims. If their software is audited (which is probably easiest with Bitwarden due to its open source--as long as you trust who distributed the built binary) to verify the code is encrypting your key/value store locally with your own passphrase prior to sending, they would have to crack the file to access its contents. But I take his point to be more about trusting their software to do what they claim, which, he points out, may even be out of their control if a malicious actor gets privileged access to modify their software. But, if I've understood that claim, then it is just as applicable for any centralized application; in other words, also don't use web browsers in the first place.
He's got other points about APIs I'm not familiar with, so I have to admit I've only focused on 2 of several points. But, for the 2 I thought I followed, I wasn't seeing those arguments go down the same road he did. This has gotten me thinking though, and I still won't dismiss the thought entirely. Interesting article.