![]() So why are we trusting Bitwarden all our passwords? Because it's open source? Because everyone is parotting that it's good, it's well protected because of "idunnowhatencryptionsorcery" and good policy and ethics? What proof do we have? Some. "If it's free, you are the product." That saying is common sense here, in the internet. The problem is that now, I have some doubt. And I decided to trust Bitwarden.īitwarden is so popular: it's free, open source and seems trustworthy. But then, I read a comic from XKCD and articles about how password manager are better, etc. As a long time non-user of password manager, I tended to trust my human memory to remember my password, and in my mind, those passwords were quite challenging to guess. It isn't likely, but just pointing out that you have a mess.I joined Bitwarden recently and I would like you to reasure me. But beware there is malware that can even survive that. My pc doesnt have important files so if i get a virus usually i just factory reset my pc. Until you have a clean operating environment, you are stuck. However, a password manager is no defense against malware. You must have completely unique and randomly generated passwords everywhere, and use the strongest 2FA available for each service. Credential stuffing is the number one attack on your accounts in 2022. Ever.įrom your post, it sounds like you really need a password manager. It should be completely isolated with no credentials on it. And you still should not perform any logins on it. If you really want to work with pirated software, you need a completely sequestered device for that. If a device does not pass these tests, you should not perform any logins OF ANY SORT on it. It also means carefully curating the downloads and apps on the device. First, you should not use credentials of any sort on a device that does not have good opsec. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |