![]() ![]() In the question“What is the best cross-platform password manager?” 1Password is ranked 5th while eWallet is ranked 22nd. If you really want to go into that direction, might as well go with a paper password book.When comparing 1Password vs eWallet, the Slant community recommends 1Password for most people. yubikey > app token > email code > phone sms).Īny kind of a file on a drive/usb seems concerning from a failure recovery perspective. Premium plan costs more than Bitwarden.įull hard drive encryption is a general good practice that should be trivial to enable. Lastpass free plan doesn't work with mobile+non-mobile, so that's not really usable. But apple offers limited 2FA options, limits you to apple, and has poor export functionality. If you want to go large tech giant approach, apple keychain is also great on a security side. required yubikey), which is great, but not everyone uses it. Google does offer Advanced Protection for free (i.e. Very good free plan (if you use yubikeys, that will be $10/year, which is lot cheaper than competition).Ĭhrome/google ties you into the google ecosystem, and arguable privacy cost. Clients/extensions for whatever ecosystem you want to be in. Hosted data is useless without your master password. I am not so paranoid as to put the keepass file into a veracrypt folder though!īitwarden. So instead I use KeePass for my logins for financial accounts. ![]() For the Chrome passwords, I don't keep logins for financial accounts there because I found out if you export passwords it comes out as a plain text file. Yeah, I don't go through the trouble of encrypting my hard drive, but I do keep sensitive documents (e.g. In an extremely unlikely event my home PC is ever stolen, I am pretty sure the thief is not going to have the technical expertise to get at my Chrome passwords Me? I am fine with putting my important documents in a VeraCrypt container. If you are concerned that someone might go to the trouble of trying to extract your Chrome-stored passwords from OS-encrypted storage by hacking into your local user account, then you could gain additional protection from encrypting your system disk. Going back to the OP's original question, I use Chrome for non-vital logins (online retailers) and KeePass for more vital stuff like financial institutions. If all sensative files are kept in a VeraCrypt file, is encrypting the entire hard drive necessary? You don't need to worry about having your hard drive removed because it doesn't use one. It uses KeePassXC as the password manager. You run it off a thumb drive that's encrypted and password protected. It's a portable operating system that doesn't store anything on the computer. Maybe another option would be using something called TAILS operating system. Do they make computers where if the hard drive is physically removed it will self wipe? If that is a concern, you should full disk encrypt regardless of your choice of password manager.Īs well as lock your comptuer physically to your desk to make it harder to walk off with. ![]() The remaining threats revolve around bad guys getting physical access to your computer. ![]() I bolded "in terms of malware" because you are probably right about that, but malware is not the only threat to your security, there are many other threats. There really is a lot of technical layers of complexity, but the bottom line is that if you use password manager's browser extension to enter passwords for you, then in terms of malware you are as secure with any third-party password manager as you are with google's. The issue of relative safety of password managers has been beaten to the pulp. This also stops young kids from messing up open files on your computer! Password managers such as KeePass do not have this problem, unless you have it open and go to the bathroom. "Compromised" is a bit drastic, but there are cases where family members / friends / visitors can touch your PC and access your browser while you go to the bathroom for 5 minutes. Other vendors tell you stories about how secure their software is, but ultimately, you have to trust them in their assessment.ĮTA: I do use passphrase encryption option, so passwords are not visible to Google. I put all my eggs into Google's basket, since my gmail account is the key to my digital kingdom anyway. There are arguments out there that Chrome's password manager is less secure than some of the alternatives, since it relies on the OS security locally, but they are largely irrelevant for the simple reason that if your local PC is compromised, it's game over no matter what password manager you use. In terms of usability for those in Google's ecosystem, it's the one to beat. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |