You must log in or register to comment.
Let me write a fucking passphrase instead of ABCabc123! And let me use fucking ã, ñ, é, ç, etc on my passwords - Microsoft doesn’t allow spaces or latin special characters
Forcing people to use upper case, lower case, number and special character is terrible for them and vastly increases password reuse. Besides, almost no one brute forces anything anymore, it’s all rainbow tables and invading the database server
Ok but I’m not losing all my passwords if I lose just one or if my manager breaks. Safety over security smh.
Do yourself a favor and go to https://bitwarden.com/
Sadly they are putting ‘AI’ bullshit into it now: https://bitwarden.com/blog/bitwarden-mcp-server/
Arghh, why is every company thinking, that AI will make them valuable…
“Let AI retrieve, generate and manage all your credentials”
Yeah a definite nope, for what reason do I use bitwarden? So that exactly this doesn’t happen…
Anyway vaultwarden is what I’m using, much more performant and self-contained, compatible to bitwarden (but you need to host it, obviously)…
Yes but it’s opt in, not opt out, it’s not shoved down my throat unlike most other companies.
Then you can generate a password so big and complex, the site or app starts begging you to stop. At that moment, you can say “ur password system is weak.”
Careful with that. Sometimes a site will allow you to use some stupid long password when you sign up, but then it turns out that some other version of the site or an app for it on other platforms won’t accept a password that long!
That’s okay, I just want to hear “it’s too big”
It just says “wrong password” and you’ll be guessing at which random character did it cut the password. Luckily sometimes it’s just a stupid html verification form that can be disabled in the console and be submitted anyway.
I mentioned lemmy passwords in the other reply. Guess how I found out
Or alternatively, it allows you to enter a password as long as you like, but on their end it gets truncated.
In lemmy, password length is capped to 60. Weak.
Almost, but KeepassDX is better 😎
Why?
It’s not a service you’re paying for. It is just a password manager.
Though tbh, I don’t know all of bitwardens spesific details.
It’s at least open source, but can you have your passwords stored anywhere other than their servers? What if the company changes path - can you just use another fork or are you stuck.
Thanks, I’ll look into it :)
Bitwarden is self-hostable and foss, with some unofficial software already out there. Not much opportunity for the company to entrap customers if it went evil.
IMO, for most people it’s best to just send them to register at bitwarden. It’s less hassle so they might actually follow through, while being infinitely better than what they were doing before.
Or just use the built in password managers in chrome or Firefox. No need to pay for a password manager when they are free on the browsers most people already use
No need to pay
I didn’t say anything about paying. It’s free in both meanings of the word.
It’s also cross-platform and -browser and better than builtin ones.
I wouldn’t recommend that. Bitwarden is free and works on any device, and doesn’t tie you to a browser. What if you want to switch browsers someday?
Same as wanting to switch password managers some day. Firefox has been the most consistent thing in my life.
That’s not really the same. But if it works for you, go for it.
Password manager
Use a password manager like keepassxc
Or Bitwarden for cloudsync
You can use keepass with cloudsync.
Just have the password file in a cloud.
Sounds like pain in the ass, I really like the auto-fill feature of Bitwarden… (or in my case vaultwarden as backend)
or a notebook
Yes, but that would involve choosing a password manager, setting up the password manager, learning how to use the password manager and remembering to use the password manager.
That’s a one-time cost for a lifetime of not dealing with remembering passwords
That’s easy, have your bi yearly over fixation on privacy and suddenly you’ll be setting up a custom VPN instead of doing your laundry. Fuck I forgot my bedsheets again
password managers save my life very hard
Correcthorsebatterystaple (somebody link please)
Edit: Most places wont allow it due to character requirements and length limits, but it does work and is cryptographically sound.
Yep and then they require you to put special characters, numbers, and capital letters because… Reasons?
I would be the one getting hacked, not them… Let me do what I want.
It’s just because of entropy. More entropy is more secure.
Also sure, it’s you getting hacked, but it’s the service that got hacked that will have all kinds of news stories written about their weak password requirements.
Also, chbs without aA!%12345ing is way harder to inject code with.
Not that anyone is allowed to code considerately and well anymore.
I don’t know how but I went way too long without a password manager. Changed my life. I recommend Bitwarden. I also use it to store like, my bank account number or my tax number.
- attribution: https://xkcd.com/936/
At home I have a notebook, at work I have a system, so I can deduce the password most of the times.
