War on the Castle, Peace in the ValleyπŸ›‘οΈπŸ‰πŸ‡΅πŸ‡Έ πŸ³οΈβ€πŸŒˆ πŸ‡ΊπŸ‡¦Dec 20, 2022

Password managers are quite familiar to people into #infosec.

But for #twitterexodus maybe not so much. Where are you at on this issue?

[Anonymous Poll!]

None - no automated manager
8%
Browser for passwords
10.7%
Lastpass
10%
1Password
19.2%
Dashlane
2%
Keepass or derivative
15.1%
Bitwarden
23.3%
Other - Paid
2.8%
Other - Free
8.7%
Poll ended at .
Show threadBeegyPsi

@theghostoftomjoad

You're missing BitWarden, which I'd argue is too large to shove into other.

Also, the poll only allows for one answer... I use a combination of BW and KeePassXC.

Dec 20, 2022 at 7:04amWeb
Show threadWar on the Castle, Peace in the ValleyπŸ›‘οΈπŸ‰πŸ‡΅πŸ‡Έ πŸ³οΈβ€πŸŒˆ πŸ‡ΊπŸ‡¦Dec 20, 2022

@BeegyPsi
Good point I edited the poll and added Bitwarden. BTW I also use more than one initially I was going to write "as your primary PWM" but in the interest of brevity left that out.

I use that and another commercial PWM and also keep a KeePass around for backup. I keep thinking of permanently migrating to KP but the commercial blobs have a lot to offer...like OS's pure open source is more an ideal than a reality.

Show threadBeegyPsiDec 20, 2022

@theghostoftomjoad

I use #KeePassXC with a #YubiKey for my highest priority passwords (financial, legal, etc.) which is kept offline.

Then I use #BitWarden for online management of all the rest.

In theory, BW is zero-knowledge so I shouldn't have to worry. But security is best with a dose of paranoia. πŸ˜‰

Show threadWar on the Castle, Peace in the ValleyπŸ›‘οΈπŸ‰πŸ‡΅πŸ‡Έ πŸ³οΈβ€πŸŒˆ πŸ‡ΊπŸ‡¦Dec 20, 2022
@BeegyPsi Mitnick praised Yubikey and keeps the important ones in his head, which also I do.