OK, I’m seriously considering a password manager. I’ve ruled out KeyPass XC as I ‘m not sure that it’s installer is compatible with M1 Mac’s. I may use it on Ubuntu, particularly as there is a snap. Preferably Open Source, although not exclusively. So what do the fine denizens of Wilders use or recommend?
Never bothered with this myself. But if it interest you Bitwarden gives you the option to self-host https://bitwarden.com/blog/host-your-own-open-source-password-manager/ There’s also an unofficial “unofficial implementation” (vaultwarden) the I have seen people mention. https://www.linuxserver.io/blog/2019-01-15-self-hosting-bitwarden
To be honest I don’t know. I just remember people mentioning this as sort of an alternative to Keepass.
I’m using Norton Password Manager extensions in various browsers. If you have Norton 360 subscription NPM is the part of it. However NPM extensions are on par.
Well, I don't think Norton cloud is more risky than any other. Look at LastPass hacked, today's thread about a possible Google hack, and more. If you ever decide to use a cloud, which is a common scenario for almost all OS nowadays (Win, Apple, Android), you should not question this step.
I think Norton is more risky than Bitwarden based on previous events. We don't even want to get started on LastPass. I've seen no mention of a Google hack outside of this site. For anyone interested I think this article has some good info. Best Password Manager to Use for 2023 - CNET
You don't need to have a subscription to use Norton Password Manager. Norton has proven unreliable in the past with people not being able to access their logins when their servers go down. I use Enpass in Linux. Not the Snap version as it doesn't work properly in Brave.
I am kinda sold on BitWarden though, possibly because there's a snap version. Not sure whether I'll put it on my MBA, but Ubuntu possibly.
I'm also thinking about using a cloud based password manager since it's sometimes annoying not having access to passwords on all of your machines. And yeah, I'm guessing all of them can get hacked, so they are probably just as risky. But of course LastPass has been in the news quite a lot. Most important is to protect your accounts with 2FA, since you can't be sure that your password database won't be stolen from the cloud. Heck, it can even be stolen from your own PC. So that's why it needs to be encrypted.
Based on the CNET article I abandoned NPM and switched to Bitwarden for all my devices, not because of concerns about the Norton cloud, but because Bitwarden is more feature-rich than NPM. @xxJackxx thanks
I don't think you'll be disappointed. We have been using it at work for a few years now and the boss seems to like it. If I can get him to use it then it's usually ok.
So far so good, just one downside Card isn't problem, it's just a few lines to fill in but addresses/identities are more comprehensive. Luckily iOS Keychain can fill these identities from my contact credentials.
NortonLifeLock warns that hackers breached Password Manager accounts. https://www.bleepingcomputer.com/ne...t-hackers-breached-password-manager-accounts/
Well, what to say, just that I'm glad that I switched to Bitwarden. I pray it wasn't too late considering the breach happened the beginning of December. My small consolation can be that I have had different passwords for the Norton account and vault.
You never know who's next? Bitwarden? RoboForm? 1PassWord? etc.... I'll stay with my routine as posted using Free LastPass: https://www.wilderssecurity.com/thr...len-in-data-breach.447009/page-2#post-3123064
As long as Bitwarden account password is unique, unpredictable and long enough it doesn't matter if hackers gain access Bitwarden server's storage, because everything is encrypted locally before being sent to Bitwarden server. If you want even more security you can host your own instance of Bitwarden server, but it probably won't add that much to security.
A very thorough routine It turned out after all that the small consolation actually was the winner consolation + 2FA.