Post ANgbrHiKIFPYIVwhUm by AAMfP@fosstodon.org
(DIR) More posts by AAMfP@fosstodon.org
(DIR) Post #ANgbrHAeJSTMc4Bo0G by iLearn@fosstodon.org
2022-09-17T15:38:49Z
0 likes, 0 repeats
Trying a password manager for the first time and it feels weird yet useful.We're always told to not write credentials down but I'm doing that with KeePassXC. At the same time I don't have to rely on memory and get to be creative with passwords and not slightly modify an existing password.I get to keep track of accounts too which is great
(DIR) Post #ANgbrHiKIFPYIVwhUm by AAMfP@fosstodon.org
2022-09-17T20:14:31Z
0 likes, 0 repeats
@iLearnWelcome. Is been years for me, using KeePass on desktop and then now also KeePassDX on mobile I've been in @bitwarden for a while: cool, but still evaluating the risk of it vs. local file.
(DIR) Post #ANgbrIBkWqwllliCMC by rudolf@fosstodon.org
2022-09-17T20:31:41Z
0 likes, 0 repeats
@AAMfP @iLearn @bitwarden The great risk with Android is a password manager using the clipboard for filling in passwords. The clipboard is open for all to read. I never understood why some apps let you do so without warning. I consider that reckless.
(DIR) Post #ANgbrIj4WxbNR7IoIS by AAMfP@fosstodon.org
2022-09-18T05:26:47Z
0 likes, 0 repeats
@rudolfIndeed true. For KeePassDX I'm using its internal "magic keyboard".@iLearn @bitwarden
(DIR) Post #ANgbrJCUlZ8auN4J9s by rudolf@fosstodon.org
2022-09-18T09:50:58Z
0 likes, 0 repeats
@AAMfP @iLearn @bitwarden I use Keepass2Android. It lets you use the clipboard but clearly warns you.I never tried Bitwarden as you must register to even try it. Apps that cannot be used without internet connection are baically wrong.
(DIR) Post #ANgbrJfv0AfoNcpo1I by bitwarden@fosstodon.org
2022-09-18T10:43:01Z
0 likes, 0 repeats
@rudolf @AAMfP @iLearn Bitwarden clipboard settings can be adjusted in the settings menu, offline editing is on the roadmap and we are looking into getting a live demo functioning on the Bitwarden website.
(DIR) Post #ANgcQa1SDMmbDRis52 by iLearn@fosstodon.org
2022-09-18T02:31:06Z
0 likes, 0 repeats
@rudolf @AAMfP @bitwarden The clipboard stores things in plaintext too, right? And there are apps that have permissions to access the clipboard
(DIR) Post #ANgcQaVaPKsyitow2y by rudolf@fosstodon.org
2022-09-18T10:47:01Z
0 likes, 0 repeats
@iLearn Any/every/all apps can read the clipboard at any time.To see what I mean install ClipStack, and look at ots recording of your clipboard.https://www.f-droid.org/packages/com.catchingnow.tinyclipboardmanager/@AAMfP @bitwarden
(DIR) Post #ANgcQaxajDHs7kvIhM by bitwarden@fosstodon.org
2022-09-18T10:49:30Z
0 likes, 0 repeats
@rudolf @iLearn @AAMfP iOS 16 adds additional functionality to protect the clipboardhttps://www.macrumors.com/2022/06/06/ios-16-require-apps-ask-users-access-clipboard/
(DIR) Post #ANgkqn5r2T9Kuvn3Ue by rudolf@fosstodon.org
2022-09-18T12:23:43Z
0 likes, 0 repeats
@bitwarden If you had a switch to use it locally that would change everything. Many people simply will not put all their passwords in any cloud.@AAMfP @iLearn
(DIR) Post #ANglDjrBErvvXUrvgO by rudolf@fosstodon.org
2022-09-18T12:28:00Z
0 likes, 0 repeats
@bitwarden Having clipboard settings won't do. If you don't loudly warn then you shouldn't publish any security related app.@AAMfP @iLearn
(DIR) Post #ANglSk3klca2Vnu6Oe by rudolf@fosstodon.org
2022-09-18T12:30:44Z
0 likes, 0 repeats
@bitwarden @iLearn @AAMfP Are you actually telling me IOS in now protecting users from using your app ?????
(DIR) Post #ANihH9wQhabRo8cU0u by bitwarden@fosstodon.org
2022-09-19T10:53:09Z
0 likes, 0 repeats
@rudolf @iLearn @AAMfP Not sure what you mean here, this feature protects users from apps that shouldn't be snooping your clipboard, there is no Bitwarden specific issue going on here, this was previously an iOS platform limitation.