• 0 Posts
  • 9 Comments
Joined 4 months ago
Cake day: February 4th, 2026
  • CardboardVictim@piefed.socialtoTechnology@lemmy.worldPassword managers are less secure than promisedEnglish
    4·
    4 months ago

    Hmm, I don’t think I’ve optimized it either to be fair. I wanted to use my phone as a ‘bridge in between’ but that means it uses battery since it ‘checks’ whats online.

    In reality my phone is usually on demand and since I work from home, my work device is usually still turned on when I turn on my ‘good computer’ with fun projects.

    One thing that I find useful is the backup / version control settings, I’ve set it up that there is a version control if it overwrites things so that when conflicts happen (eg a sync didn’t happen and I changed both keepass databases) I can quickly ‘merge’ them or sync them up manually.

    I’ve also heard that syncthing isn’t available on android anymore but a fork (that is somewhat vetted, iirc) exist.

    If you can run applications on your NAS & connect to it from anywhere, it could be used as a type of ‘master’ server that keeps everything in sync that is always online.

  • CardboardVictim@piefed.socialtoTechnology@lemmy.worldPassword managers are less secure than promisedEnglish
    16·
    4 months ago

    From what I scanned, there was no reason given on why they only attacked cloud based providers.

    My guess is that these are paid ones and thus have a ‘market share’, easier to attack etc.

    If you attack a ‘keepass’ password the attack vector is more crypto / memory based as far as my limited knowledge goes and not some funky inbetween attack.

    Also, if you attack a cloud base provides, you will most likely have multiple victims per breach / exploit, whilst offline are targeted and thus not so interesting in most cases unless we’re talking about a person of interest