Quote:
Originally Posted by Sirtel
[...] It's the extreme privacy advocates (never buy ebooks, never use the services of any big bad companies etc) that really irk me. Especially if they tell others to do the same.
|
Yes, that sort of thing irks me too - from either direction. But some of the reaction you've seen on this thread might be due to the subject line with its accusation of "Paranoia". For me this stuff has slowly evolved into a habit rather than any sense of paranoia. My question now is always "Why do they need it?" rather than "Why not provide it?", and my default position is always minimal sharing.
Quote:
Originally Posted by ownedbycats
If you're referring to the stunt LastPass pulled earlier this year, I suggest looking into Bitwarden. |
I wasn't thinking of a particular product, only that these products are still evolving and getting something that you both trust and that works well on all the devices you have has not been straightforward. Let's face it, deciding to put all your security eggs into a single basket like this is a pretty big decision.
Open source is nice but not a huge comfort unless you have the skill and experience to review a security product - so most of us are putting our faith in all the other people we
assume are looking at it. And 2FA is great when you're using your phone as a token for your desktop, but when your phone is being used for both parts of the transaction that increases the burden of trust.
As it stands, there are things I put in my chosen password manager (KeePassXC and KeePassDX) and a few things I do not. So there are still a lot of eggs in there, but not all of them.