Attached: images.jpg (639x480, 22K)
What password manager do you use, Jow Forums?
Hudson Diaz
Robert Stewart
Hint: God gave it to me
Kevin Bennett
Easton Hughes
pass
it's basically what I did before too but with better integration
Hunter Perez
Pass and passwordStore (android)
Matthew Roberts
KeepassX
Jordan Wood
Bitwarden.
Carter Baker
pic rel but i'm thinking about bitwarden
Jaxon Moore
Bitwarden self hosted.
Jackson Richardson
My memory
Jason Thompson
Pass for Linux, passwordstore for Android.
Ayden Thomas
neurons
Lucas Murphy
down syndrome?
Justin Sanchez
Firefox with master password with a password protected excel workbook as backup.
Wyatt Nguyen
1Password.
Jeremiah Brown
Why would I put all my passwords in one place, in software I know nothing about?
Wyatt Butler
So you only need to remember one super long and convoluted password to access your other less long and convoluted passwords
Most good password managers are typically open source and audited, but if you are paranoid, you can research them beforehand
Jordan Brown
Best setup right here, seconding this
Jonathan Reed
Chuclechucc
Jack Barnes
keepass
Jack Anderson
keep ASS xc
Elijah Brown
keepassxc
Hudson Moore
notepad.
Logan Cox
Should i migrate from lastpass to bitwarden?
Adam Wood
but does this automatically insert passwords for you or is it just a place to write them down in case you forget them?
Alexander Morgan
my brain because im not retarded
Joshua King
vanilla keepass on windows, keepass2android for my phone.
db synced with google drive.
Luke Ward
Why everyone hate lastpass?
David Gray
>but does this automatically insert passwords for you
It copies password to the clipboard for a limited amount of time.
There are browser plugins to fill everything automatically.
Xavier Stewart
only retards use online password managers
Michael Hill
And the rest of password mangers don't?
Isaiah Mitchell
Bitwarden.
Jeremiah Hill
Notepad
Anthony Robinson
Keepass2 on Windows, keepass2android on phone.
Evan Taylor
I write them in text files on my pc
Henry Ortiz
Nope, KeePass is an offline encrypted database file
Angel Hill
Absolute brainlets.
Logan Fisher
i keep the passwords in d: drive.
Ryder Anderson
Why would i use this bloat when i can just put it in an encrypted text file
Luke Garcia
KeePass
Ian Martinez
Arn't password managers botnet/spyware
Joseph Reed
>2019.833
>Not having an encrypted tab on you're clipboard manager.
Logan Lewis
>putting your passwords in “reliable” apps
>not writing everything on paper
Might as well email me your passwords, anons
Caleb Hernandez
I can email them to you but it's gonna take you longer than the expected age of the universe for you to crack 1.
Dylan Evans
pastebin
Aiden Rogers
What does Jow Forums think of lesspass? Idea seems solid.
lesspass.com
William Cooper
>having to actually type out complicated passwords
assuming you are logging out everywhere after ending the session. if you aren't, then writing it on paper isn't much more secure.
>have access to machine
>have access to session
>configure victims machine as vpn
>log into every conceivable service with those sessions
Grayson Stewart
Same as I recently switched to zx2c4 pass, pretty happy with it so far. passwordstore.org
Still have to insert passwords in the correct format from a few browsers and stuff, though.
Camden Bailey
Passwordstore can use Android's autofill on chromium on Android.
But in general, you'll be using a browser extension or other piece of software, the "pass" CLI can't monitor applications under Xorg or Wayland or whatever else you're using.
See passwordstore.org
Ryder Moore
Use one of the open sauce ones, and feel free to sandbox it a bit.
Carter Myers
Too paranoid to tell.
Chase Sullivan
seconded, plus a few plugins to sync my database through SFTP
Mason Brown
For me is KeePassXC, it literally just works.
Easton Butler
Last pass, if your posting on here Google already has a bunch of info on you, the only way for real privacy is to live in a cabin offline
Connor Diaz
>if your posting on here Google already has a bunch of info on you
what makes you think that?
Colton Morris
Does it have "correct" information on you, though?
Also, are you really sure that it makes sense to say:
> Google knows me a bit, it now doesn't matter that it has easy insight into ALL my passworded secrets?
I myself find that rather weird. Why wouldn't you try to keep as much information as possible away from the potentially most threatening parties that you have no particular reason to trust to begin with?
Jacob James
Mock me all you want, but i use google's smart pass.
Josiah Morales
>giving shekels to chink moot
yikes
Connor Reyes
pic related, no reason to settle for anything worse
Jeremiah Sanchez
Whats best way to export all passwords from FF?
Ayden Long
Yes
James Evans
I used LastPass for years (I know, I know), and to my amazement I've actually found Bitwarden to be a lot more polished.
Kayden Rogers
It just work, and it's open source I use it on Windows and Android :)
Connor Reyes
iCloud Keychain. Did not understand why someone can need something else.
Kevin Ortiz
Go drink some bleach, shit for brains.
Josiah Taylor
I'm using the Password Exporter addon in FF28, but that doesn't work in FF57+.
Newer versions of FF will have to use one of these.
github.com
github.com
Ethan Reyes
I have developed and memorized an algorithm, which creates all my passwords + an 16 digit random password which I have memorized. I am not gonna give any hints on what the algorithm is based because I am a paranoid schizo.
But a crude example would be, based on the date which the password was created, go to a particular book passage, and based on the book passage create a password using a specific method based on the score of my favorite team for that week. (This is not the algorithm obviously it is way more complex. Just a very basic idea. I don't even use the date or sports teams)
These two combined are my various passwords.
Austin Mitchell
I don't use one
But all my passwords are offensive to some group of people, so I'm safe from cukcs hacking my shit. Unless he's ready to type nigger.
Jackson Ortiz
Not a bad idea, honestly
Nolan Thomas
Holy shit
Landon Russell
KeepassXC on Linux of course. And Keepass2Android on Android
Gavin Stewart
but then you need access to the book + a bunch of time to compute the password
at that point you might as well use a key derivation function
Gabriel Bell
literal mental gymastics
>set up password manager
>make ONE good and secure password to memorize/mental gymnastics
>2fa if available/want to
>password manager makes autistic passwords and you don't lift a finger
Tyler Robinson
KeepassXC
Benjamin Cox
I'm waiting for keep ass xD
Hudson Peterson
KEK
Henry Baker
Why would I ever trust a password manager. Lmao. Trusting your passwords to a foreign entity is retarded as fuck.
Nobody knows my passwords except me. The method exists only in my head.
I would never trust a piece of software.
Christopher Sanchez
>password manager
Colton Flores
>using a password manager in current year
Just write them down and send a copy to the NSA and another to the Mossad, it's easier that way.
William Thomas
absolutely destroyed
Julian Wilson
>Trusting your passwords to a foreign entity
>The method exists only in my head.
>trusting yourself
Literally doomed from the start.
Jason Scott
This but unironically.
No chance.
David Smith
Using software that hasn't been updated for over three years to store your passwords. Yeaaah right...
Better use KeepassXC.
It's a community fork , is fully compatible to both Keepass2 and KeepassX and it is actively developed.
David Wright
Until you lose that shit.
I would at least have a universal, 16-letter password to enter before/after whatever is in the logbook.
Plus, good luck entering a 100-letter passphrase.
Isaac Carter
That's called security by obscurity and is total bullshit.
If someone finds out your "secret algorithm" and is then able to recreate all your passwords it is worth nothing.
Algorithms are only secure if you can make them public.
Gavin Turner
>"Trusting your passwords to a foreign entity is retarded as fuck."
Just don't use one of those crappy online services.
Use an offline open source program like KeepassXC. Your password database will never see the Internet if you don't want it to and since it's open source you can audit the code yourself if you're that paranoid.
Christopher Parker
>Why would I ever trust a password manager
What do you mean?
Pass just literally manages encrypted text files with passwords on your device and tracks changes with git.
If you don't trust it, you don't trust your machine and can't use passwords on it in the first place.
Adrian Clark
Jesus christ
Luke Wood
I kidnap a nigger and force it to remember my passwords, much cheaper than a password manager
Thomas Collins
I'm not saying to trust a password manager. You can do it on a default python install from the shell.
I mean, if you don't trust computers at all, then what are you using to store the plaintext? Are you storing everything with paper and pen? If so then you might be safe against non-state actors, but they probably would be able to crack your cipher if they tried unless you are doing AES encryption in your head (which you're not).
Liam Gray
>OLD = BAD
Daniel Phillips
considering that this is a single point of failure for all your passwords it is probably under heavy pentesitng pentesting all the time.
and a tool that hasn't seen an update since 2016 is probably full of security flaws by now.
So yes in this case old = bad and I wouldn't use that any longer.
Josiah Jones
No, it's not any more insecure than any other password manager. In fact, it might be even more secure, since the code has been scrutinized for a longer time so you can be more certain that no crucial flaw has been introduced than with a password manager that's updated all the time.
Not to mention that there really aren't any attack vectors other than regular OS level attacks such as hijacking the UI or reading data from memory. It's just an utility that reads data from a file and decodes it according to a password, there aren't any plausible remote exploits, at most you could get a local exploit by malformed password databases but then again that's just as likely for any other password manager that's written in C or C++.
Ayden Gutierrez
I like it. When I bother to set up syncthing I'll probably export my database to keepass x whatever and then use that.
Ryder Rivera
That one.
And keepass DX on Android.
>Might as well email me your passwords, anons
If you post your real email I'll unironically send you my real database. It literally contains every single account/password I have, including many private trackers with great ratios and banking details. Feel free to destroy my life if you manage to crack it.
I'll even give you a hint, my master password is just a huge ass passphrase. Normal, English phrase, just really long. No bells and whistles.
Ryan Hughes
>Using other password managers
Tell me you think these companies that manage all your valuable passwords are hack-proof and they never gonna get hacked and leak all your shit all together.
Thing is if you want a password manager you make your own in python and have it non connected on the internet. im building my own as we speak
Jonathan Carter
Lastpass has had two database leaks with no plaintext password leaks.
That likely means they're only storing the passwords in an encrypted way.
I'm not saying it's as secure as a local manager, but it's still quite safe.
Jason King
Keepassxc don't manage anything. You store your own encrypted database in your own computer. How it will be leaked online?
Adrian Rodriguez
My head. I reset passwords on occasion.
Sebastian Hernandez
>these companies
What companies?