Post A4nviJnMGNogKPYFgO by stux@mstdn.social
(DIR) More posts by stux@mstdn.social
(DIR) Post #A4nttloqDAnUWIZuCm by stux@mstdn.social
2021-03-02T15:39:07Z
2 likes, 2 repeats
Security researcher recommends against #LastPass after detailing 7 #trackers A security researcher is recommending against LastPass password manager after detailing seven trackers found in the Android app.https://www.theverge.com/2021/2/26/22302709/lastpass-android-app-trackers-security-research-privacyhttps://reports.exodus-privacy.eu.org/en/reports/165465/LastPass Android: Drittanbieter überwachen jeden Schritthttps://www.kuketz-blog.de/lastpass-android-drittanbieter-ueberwachen-jeden-schritt/
(DIR) Post #A4nusSHdSV91b0z1No by calculsoberic@mstdn.social
2021-03-02T15:50:06Z
0 likes, 0 repeats
@stux Oh shit! I hope that BitWarden/KeePass are ok. If not, I switch to Pass! :)
(DIR) Post #A4nv2u8Ul4rasJgs6K by stux@mstdn.social
2021-03-02T15:52:00Z
0 likes, 0 repeats
@calculsoberic BitWarden: https://reports.exodus-privacy.eu.org/en/reports/com.x8bit.bitwarden/latest/KeePassDXhttps://reports.exodus-privacy.eu.org/en/reports/com.kunzisoft.keepass.free/latest/
(DIR) Post #A4nv8E7rrcRSJvw1wG by calculsoberic@mstdn.social
2021-03-02T15:52:57Z
0 likes, 0 repeats
@stux oh god, really?! you just can't win. so what do you use?
(DIR) Post #A4nvBplyLm1ZwtPhuS by wetsocks@cdrom.tokyo
2021-03-02T15:52:00.455515Z
0 likes, 0 repeats
@calculsoberic @stux protip: do not use pass on gentoo (for me it took 3 minutes to unlock password), i no longer use gentoo. just don’t use gentoo.
(DIR) Post #A4nvBqDGiHrJJYBVSK by calculsoberic@mstdn.social
2021-03-02T15:53:40Z
0 likes, 0 repeats
@wetsocks ha, I have Ubuntu and occasionally use Arch as a VM. @stux
(DIR) Post #A4nvK795dsKe99AufI by calculsoberic@mstdn.social
2021-03-02T15:55:10Z
0 likes, 0 repeats
@wetsocks this is a pain because you have to store the passwords somewhere, don't you? I occasionally generate them in bash but it doesn't keep them for you. @stux
(DIR) Post #A4nvhtblcr616vvd0S by wetsocks@cdrom.tokyo
2021-03-02T15:58:44.743396Z
0 likes, 0 repeats
@calculsoberic @stux pass has a flexible generation feature using /dev/urandom (pass generate) and the files are regular textfiles stored in a user-defined directory structure, encrypted by your gpg key.
(DIR) Post #A4nvhu1I5xVqO5s0n2 by calculsoberic@mstdn.social
2021-03-02T15:59:27Z
0 likes, 0 repeats
@wetsocks ok! well, I already have a GPG key, so I'd just have to install pass! :abunsmile: @stux
(DIR) Post #A4nviJnMGNogKPYFgO by stux@mstdn.social
2021-03-02T15:59:28Z
0 likes, 0 repeats
@wetsocks @calculsoberic I still use my head :blobcatgiggle: Thinking about something self hosted..
(DIR) Post #A4nvlb3gXEUmjpkeoa by calculsoberic@mstdn.social
2021-03-02T16:00:04Z
0 likes, 0 repeats
@stux I would, but I honestly can't remember all the passwords. I have a different one for each website/service. @wetsocks
(DIR) Post #A4nvsWRc5XXYSHFKAi by stux@mstdn.social
2021-03-02T16:01:19Z
0 likes, 0 repeats
@calculsoberic @wetsocks Yup same! But many sorts! Also use prashes, much easier and also longggg! I would not even dare to speak out most of them so discusting :blobcatgiggle:
(DIR) Post #A4nw2Pc6L9ACAJrr7o by calculsoberic@mstdn.social
2021-03-02T16:03:07Z
0 likes, 0 repeats
@stux yes, for the self-generated ones I use diceware, so something like "pencil-cracker-tennis-desk-coffee-wipe-floor" (not an actual one!)@wetsocks
(DIR) Post #A4o1MMW446Wg7bNOMK by Bunnyhammer@mastodon.online
2021-03-02T17:02:44Z
0 likes, 0 repeats
@stux @calculsoberic Keepassdx is probably the better choice if you are using Android, KeepassXC for Windows, Linux and/or Mac.Andotp is another, personally, good app for Android for 2fa codes.
(DIR) Post #A4o4P1WsqkKllOii5Q by calculsoberic@mstdn.social
2021-03-02T17:36:55Z
0 likes, 0 repeats
@Bunnyhammer ah, thanks! KeepassXC since I'm on Linux. My phone is Android. @stux
(DIR) Post #A4o4cRKwD58dZHWuye by calculsoberic@mstdn.social
2021-03-02T17:39:20Z
0 likes, 0 repeats
@Bunnyhammer I sent a follow request, but not just for numbers! :flan_laugh: @stux
(DIR) Post #A4oBpDhMvXw6iJ3xfE by Bunnyhammer@mastodon.online
2021-03-02T19:00:03Z
0 likes, 0 repeats
@calculsoberic @stux :ablobcatheartsqueeze: It has been gladly accepted. :apartyblobcat:
(DIR) Post #A4oC91s8bgCrpJXtwG by calculsoberic@mstdn.social
2021-03-02T19:03:40Z
0 likes, 0 repeats
@Bunnyhammer Hooray!! I'm always looking to learn more about privacy and anonymity.
(DIR) Post #A4oCFwoPon8KA06UCG by calculsoberic@mstdn.social
2021-03-02T19:04:54Z
0 likes, 0 repeats
@Bunnyhammer have you ever used pass?
(DIR) Post #A4oCNpBK4XPyoMZfea by Bunnyhammer@mastodon.online
2021-03-02T19:06:19Z
0 likes, 0 repeats
@calculsoberic Hopefully I can help out with some of it. :DJust a constant cat and mouse game to get privacy of some form without too many disadvantages. X_XNo, never used Lastpass and considering they are the company who are behind Hamachi, I don't want to touch them personally. Plus, I prefer keeping my passwords and the manager offline. :D
(DIR) Post #A4oCRQqUUjqqUcYCHY by calculsoberic@mstdn.social
2021-03-02T19:06:59Z
0 likes, 0 repeats
@Bunnyhammer Oh, I meant pass, the unix password manager: https://www.passwordstore.org/ my wife uses lastpass, though! hmmm
(DIR) Post #A4oCVvtJ0isbw90su8 by Bunnyhammer@mastodon.online
2021-03-02T19:07:47Z
0 likes, 0 repeats
@calculsoberic Haha, my bad. No, never heard of it personally, going to read up on it. :blobcattea:
(DIR) Post #A4oCcdsIORFg5Tjx5M by calculsoberic@mstdn.social
2021-03-02T19:09:01Z
0 likes, 0 repeats
@Bunnyhammer I've only been using Linux since 2019 and have been learning to use a lot of the programs that are associated with it, like Vim, bash, nmap, etc.
(DIR) Post #A4oCnQmlOnKog3ITqK by Bunnyhammer@mastodon.online
2021-03-02T19:10:57Z
0 likes, 0 repeats
@calculsoberic Ah, so very recently. I've been using Linux, on and off for several years. Although, still learning through all of it as well, so much to learn haha.
(DIR) Post #A4oCxGPSpZ9HOR5UDQ by calculsoberic@mstdn.social
2021-03-02T19:12:44Z
0 likes, 0 repeats
@Bunnyhammer Exactly! I used to have a cheat sheet with the commands as my wallpaper. nmap is kind of the same, trial and error...
(DIR) Post #A4oDAP69q0xq6ZK4m0 by Bunnyhammer@mastodon.online
2021-03-02T19:15:06Z
0 likes, 0 repeats
@calculsoberic nmap is a beast, used it a bit but it is a major rabbit hole to go down on.You'll get used to the commands etc. The more you use the terminal, the better. :ablobcatrave:
(DIR) Post #A4oDTDGQ3vzOu35jeK by calculsoberic@mstdn.social
2021-03-02T19:18:31Z
0 likes, 0 repeats
@Bunnyhammer I agree! I use it almost daily, but there are times when it's cumbersome.
(DIR) Post #A4oDmhaNYBjARlijTM by Bunnyhammer@mastodon.online
2021-03-02T19:22:02Z
0 likes, 0 repeats
@calculsoberic What distro are you running?
(DIR) Post #A4oDneOitAScqhikzo by calculsoberic@mstdn.social
2021-03-02T19:22:13Z
0 likes, 0 repeats
@Bunnyhammer Ubuntu.
(DIR) Post #A4oE3A7HF46pZAxPMW by Bunnyhammer@mastodon.online
2021-03-02T19:25:00Z
0 likes, 0 repeats
@calculsoberic Cool. :) Another distro you may like is Linux Mint. Based on Ubuntu, although they do have a Debian version. Very user friendly, used to use them quite a fair bit in the early days.
(DIR) Post #A4oEbpCD11x6omnBuC by ComplicatedByDesign@mstdn.social
2021-03-02T19:31:13Z
0 likes, 0 repeats
@stux using bitwarden, did they mention it in some way?
(DIR) Post #A4oWoiPLMat0hkET44 by masstransitkrow@shitposter.club
2021-03-02T22:55:20.712075Z
0 likes, 0 repeats
@stux way ahead of this. I stopped using LastPass around the same time I started scrutinizing my use of G----- services, for similar reasons.I use KeePassDX and I sync the KBDX file among several filesystems to ensure that every device has the same version using a combination of Syncthing and SMB Direct.Breaches become less valuable if you don't put your data in the same place.
(DIR) Post #A4pI66Aswpc7BVGDCK by nathan_wasson@mstdn.social
2021-03-03T07:45:04Z
0 likes, 0 repeats
@calculsoberic @stux I've been using BitWarden for a while now and have been happy with it so far.
(DIR) Post #A4q1pkgxeEUrocPIjw by ashwansr@mas.to
2021-03-03T16:17:28Z
0 likes, 0 repeats
@stux Bitwarden anytime