Dan "18pF flip-flop"Dec 8
[object Object]

please for the love of fuck don’t have a parasocial relationship with a password manager, an encrypted mail provider, or any other security or privacy software vendor

you absolutely don’t need to defend the honor of a project you like. you especially don’t need to defend a project that’s provably doing something dangerous

when I call out keepassxc or proton or whatever in the strongest terms possible, I do it because it’s important. I do it to create awareness, not fear.

Nov 8 at 10:17pmWeb
Show thread[object Object]Nov 8
should you immediately stop using the software I’ve called out? fuck no. if I’m doing this, it’s because the software is critically important in keeping people safe. your migration off of a piece of safety-critical software should involve as much planning as your threat model can afford — ideally while being very vocal about why you’re migrating, to help keep others safe and to bring at least some accountability to the people who made the software in question unsafe.
Show threadNathanNov 9
@zzt the news about KeepassXC accepting AI generated code is extremely disappointing.
Show threadkiaraNov 9
@nathanu @zzt oh damn I was leaving it cause it didn't suit my needs (sadly, I kinda like the UI) but I wasn't even aware of that it's terrible!!