this post was submitted on 20 Aug 2024
191 points (95.7% liked)

Asklemmy

43378 readers
1477 users here now

A loosely moderated place to ask open-ended questions

Search asklemmy πŸ”

If your post meets the following criteria, it's welcome here!

  1. Open-ended question
  2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions. Assume best intent and be excellent to each other.
  3. Not regarding using or support for Lemmy: context, see the list of support communities and tools for finding communities below
  4. Not ad nauseam inducing: please make sure it is a question that would be new to most members
  5. An actual topic of discussion

Looking for support?

Looking for a community?

~Icon~ ~by~ ~@Double_[email protected]~

founded 5 years ago
MODERATORS
 

For me it's the paranoia surrounding webcams. People outright refuse to own one and I understand, until they go on and on about how they're being spied. Here's the secret - unplug the damn thing when you think you won't use it or haven't used it in a while.

They, whoever it is, can't really spy on you on something that's already off and unplugged!

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 149 points 4 weeks ago (4 children)

Password managers. People will use anything but that: paper, notes app (without any security), using the same password everywhere...

[–] [email protected] 9 points 3 weeks ago

Came to say this exact thing.

FFS I have 100's of passwords saved in my keepass DB, they are all different.

Passwords will only autofill on the correct site, so look alike sites are captured by that simple bit of security.

[–] [email protected] 6 points 3 weeks ago (3 children)

I keep trying to convince my parents. Then they say but what if I forget the master password? I say they won't with a passphrase but they don't believe me.

Also I don't have experience with PW managers other than 1Password, Bitwarden and Roboform. I personally didn't like Bitwarden. I think it's UI is janky and oldschool. Roboform is so bad I don't even know where to start complaining. So I keep using 1Password even though the UI has been getting worse but it still works for me because of the good integration into the Apple ecosystem. But it's rather expensive for managing the 20 something passwords my parents have. I read about breaches on other PWMs sometimes so I don't really know what to trust and recommend.

[–] [email protected] 6 points 3 weeks ago

Set my family up with Bitwarden. Had them think up good passwords, told them not to tell me, etc. etc. they went and promptly forgot it.

One of these days I'm going to set them up again but this time I'm going to have to save their master passwords on my account.

[–] [email protected] 5 points 3 weeks ago

Show them you can export the passwords and print them. It will help them to make the switch to know they cannot lose everything because it is on paper. It is what helped my parents

[–] [email protected] 3 points 3 weeks ago

Keepassxc works fairly well for me, with a few quirks. Don't know how it is on apple though.

[–] [email protected] 3 points 3 weeks ago (1 children)

I keep telling myself I need to start using a password manager but I'm worried I won't be able to log into things on my phone or other devices like my work computer when I need to because I don't know the password. Is that a legitimate worry or is there a solution for this? How do you sync passwords between computer and phone?

[–] [email protected] 1 points 3 weeks ago

I hse keepassxc and store my password database in onedrive. My phone has an app keepass2android which can read the database in onedrive.

[–] [email protected] 1 points 4 weeks ago (3 children)

Eh, I don't trust any 3rd party enough to give them all my passwords and I don't trust myself enough to secure a server for self hosting a password manager.

I know all my passwords, can't forget em, no paper or notes, no repeat passwords.

[–] [email protected] 54 points 4 weeks ago (1 children)

If you know all your passwords and can’t forget them, I’m assuming your using some sort of pattern to remember them in which case you have a major issue in case of data breaches as your other passwords can be guessed.

[–] [email protected] 42 points 4 weeks ago (4 children)

Keepass. Password database is a local file.

[–] [email protected] 9 points 4 weeks ago (1 children)

Technically you could use PGP to encrypt a .txt file with all your passwords in it. Which would be more or less the same thing with a lot less polish to it.

[–] [email protected] 1 points 3 weeks ago (1 children)
[–] [email protected] 2 points 3 weeks ago

PGP is 'pretty good privacy'; it's an encryption standard. It's not the best, but it's fairly easy to use, and it going to resist decryption pretty well, for most use-cases. The idea is that you have a public key, and a private key. The public key allows messages to be encrypted, while your private key allows decryption.

[–] [email protected] 4 points 4 weeks ago

this is the way

[–] [email protected] 1 points 4 weeks ago (1 children)

Sorry stupid question, but how do I import my passwords from Proton Pass to KeepassDX?

[–] [email protected] 10 points 4 weeks ago (2 children)

I looked it up for you; you can export your Proton Pass database as a .csv file and then import it into KeePass. Not sure about KeePassDX but on XC, there's a csv import option. There's also a json import option but it says BitWarden for that so I'm not sure if the json Proton Pass exports is in the same structure as KeePassXC expects.

[–] [email protected] 2 points 3 weeks ago

Keepassdx is an android app for keepassdx databases with a nice ui. I use it too.

[–] [email protected] 1 points 4 weeks ago (1 children)

Thanks for the answer! Another question: does saving the data on KeepassDX keep all the passwords and such for me to import to other apps if needed? Or what does the file include?

[–] [email protected] 4 points 4 weeks ago (1 children)

You can export as csv, html, xml from KeePassXC. Dunno about DX but you can just try it on your desktop if it's not an option on mobile.

You know I'm looking up all these answers right? I don't mean to be rude but you can and should just look these up yourself. You can check import and export options by opening keepassxc/keepassdx and checking for yourself

[–] [email protected] 3 points 3 weeks ago

Yeah, you're right. Sorry, I definitely have a tendency to treat Lemmy as a search engine sometimes. Nonetheless I appreciate you answering me!

[–] [email protected] 19 points 4 weeks ago* (last edited 4 weeks ago) (1 children)

Fucking THANK YOU.

A very good friend of mine doesn't use any password manager. I've often in the past told them why don't they? They argue that then all their passwords would be gone if they forget that one master password. Okay, I say, how the fuck is having to remember 1 password harder than having to remember 20 passwords?

[–] [email protected] 2 points 3 weeks ago (1 children)

Any good password manager nowadays also has an account takeover feature if you opt in. Basically your spouse / child / parent can take over your account to recover it for you if you can’t get in.

[–] [email protected] 2 points 3 weeks ago

I had to save my wife's account before on 1password family. It worked nicely!