Matt Brunt12h ago

Does anyone using #1Password know if you can search for + addressed emails in the foo+bar@baz.com format?

I want to find all accounts where I've used that format for aliases so I can update them.

(searching for matt+ doesn't work as it just finds items with "matt" in it, which is... basically everything)

@1password

Rob Pomeroy17h ago

This is a great paper on the risks of malicious servers when using password managers: https://zkae.io/. I understood about 2% of it.

You have to dig down in the paper to see that there was pretty good engagement from the password manager developers, once contact was established. That's encouraging, particularly in the light of recent reputational damage suffered by LastPass, and doubts about its future under private equity ownership.

#crypto #passwordmanager #lastpass #dashlane #bitwarden #1password

Show threada120h ago
Here's an english link. https://www.swissinfo.ch/eng/various/researchers-find-major-security-gaps-in-password-managers/90951851 #1password

#enpass
#Bitwarden
#lastpass
#dashlane
#itsecurity
#datasafety
#passwordmanager
#unsafe
Swiss researchers find password manager security gaps

Swiss research team uncovers serious security flaws with password management systems.

www.swissinfo.ch
a120h ago
This is, why I hate it when I am forced to "share" the keys to my castles via the cloud of password-managers like 1Password. Most local (WiFi) sync suck, or simply are dysfunctional (yes, 1Password, looking at you!). You have to trust them to encrypt the vaults adequately, which in three cases has ben shown not to be safe at all. https://ethz.ch/de/news-und-veranstaltungen/eth-news/news/2026/02/passwortmanager-bieten-weniger-schutz-als-versprochen.html #1password #enpass #Bitwarden #lastpass #dashlane #itsecurity #datasafety #passwordmanager #unsafe
Passwortmanager bieten weniger Schutz als versprochen

Forschende der ETH Zürich haben bei drei populären, cloudbasierten Passwortmanagern gravierende Sicherheitslücken entdeckt. In Tests konnten sie gespeicherte Passwörter einsehen und sogar verändern. 

ETH Zürich
Przemysław Kołodziejczyk4d ago

https://eshlox.net/managing-cloudflare-with-opentofu

#opentofu #cloudflare #1password #iac

Why I use OpenTofu to manage Cloudflare (even though I am the only developer) | eshlox

Adopting Infrastructure as Code for personal Cloudflare domains: a secure workflow using OpenTofu, 1Password, and client-side state encryption.

eshlox
Brian "bex" Exelbierd5d ago

op-secret-manager v0.5.0 resolves race conditions when multiple services demand credentials simultaneously. This release adds per-user process locking to safeguard concurrent fetches, plus a standard --version flag and reorganized documentation.

The tool bridges 1Password to multi-user Linux systems without implied infrastructure. No daemons, no persistent agents, just SUID privilege separation and exit.

https://github.com/bexelbie/op-secret-manager/releases/tag/v0.5.0

#Linux #1Password

Как мёртвый пингвин6d ago
#AlfredApp et #1Password sur un nouveau Mac. C’est bon, on va pouvoir commencer à bosser.
Show threadJonathan Kamens 86 47Feb 10
(continued from last post)
I archived the rest of them in the desktop app. They all continued to remain visible in the browser extension. I quit and restarted the browser and then they were finally no longer visible in the extension.
This is not good!
#1Password
Show threadJonathan Kamens 86 47Feb 10
Today I attempted to archive some old #1Password items in the browser extension in Vivaldi. I searched for the items I wanted to archive, selected each one, and selected the "Archive" menu command. Nothing appeared to happen. Each one should have disappeared from view as I archived it but they didn't.
I tried archiving one of them again, and I got "an error occurred."
I looked in the desktop app and found that some of them had been archived successfully and others hadn't.
(continued)
Brian "bex" ExelbierdFeb 6

Managing secrets at a small scale on Linux often means copying files manually or giving in and running more services. op-secret-manager is a single-binary tool that uses SUID privilege separation to fetch 1Password secrets on demand.

No daemons, no persistent agents, just secrets in /run/user/$UID/secrets.

Pairs well with rootless Podman user quadlets and systemd.

https://github.com/bexelbie/op-secret-manager

Read more at: https://www.bexelbie.com/2026/02/06/op-secret-manager

#Linux #Security #DevOps #1Password #Podman

GitHub - bexelbie/op-secret-manager: Retrive 1Password secrets and provide them in /run/ for quadlets

Retrive 1Password secrets and provide them in /run/ for quadlets - bexelbie/op-secret-manager

GitHub