Paul Kater<p>Still toying with European password managers. Both Proton Pass and Padloc are great options.</p><p><a href="https://writing.exchange/tags/PasswordManager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PasswordManager</span></a> <a href="https://writing.exchange/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://writing.exchange/tags/BuyEuropean" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BuyEuropean</span></a></p>
Recent searches
No recent searches
Search options
Only available when logged in.
c.im is one of the many independent Mastodon servers you can use to participate in the fediverse.
C.IM is a general, mainly English-speaking Mastodon instance.
Administered by:
Server stats:
2.9Kactive users
c.im: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.6
#passwordmanager
8 posts · 8 participants · 1 post today
Linux Is Best<p><span>A list of Digital Service Providers outside the jurisdiction of the United States of America.<br><br></span><a href="https://codeberg.org/Linux-Is-Best/Outside_Us_Jurisdiction" rel="nofollow noopener noreferrer" target="_blank">https://codeberg.org/Linux-Is-Best/Outside_Us_Jurisdiction</a><span><br><br>This is a group project, so feel free to reach out if you have any suggestions, or learn any new information.<br><br></span><a href="https://mk.absturztau.be/tags/Vpn" rel="nofollow noopener noreferrer" target="_blank">#Vpn</a> <a href="https://mk.absturztau.be/tags/Email" rel="nofollow noopener noreferrer" target="_blank">#Email</a> <a href="https://mk.absturztau.be/tags/Dns" rel="nofollow noopener noreferrer" target="_blank">#Dns</a> <a href="https://mk.absturztau.be/tags/Domain" rel="nofollow noopener noreferrer" target="_blank">#Domain</a> <a href="https://mk.absturztau.be/tags/Messenger" rel="nofollow noopener noreferrer" target="_blank">#Messenger</a> <a href="https://mk.absturztau.be/tags/WebHosting" rel="nofollow noopener noreferrer" target="_blank">#WebHosting</a> <a href="https://mk.absturztau.be/tags/PasswordManager" rel="nofollow noopener noreferrer" target="_blank">#PasswordManager</a> <a href="https://mk.absturztau.be/tags/WebSearch" rel="nofollow noopener noreferrer" target="_blank">#WebSearch</a> <a href="https://mk.absturztau.be/tags/UsJurisdiction" rel="nofollow noopener noreferrer" target="_blank">#UsJurisdiction</a> <a href="https://mk.absturztau.be/tags/Project2025" rel="nofollow noopener noreferrer" target="_blank">#Project2025</a> <a href="https://mk.absturztau.be/tags/UnitedStates" rel="nofollow noopener noreferrer" target="_blank">#UnitedStates</a></p>
Moe Lassus<p><a href="https://mastodon.social/tags/KeePass" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>KeePass</span></a> compatible iOS app, <a href="https://mastodon.social/tags/Strongbox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Strongbox</span></a> sold to New York firm, Applause. </p><p>Article in is German but if you are on iOS you should have no problem translating it.</p><p><a href="https://stadt-bremerhaven.de/passwortmanager-strongbox-wurde-uebernommen/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">stadt-bremerhaven.de/passwortm</span><span class="invisible">anager-strongbox-wurde-uebernommen/</span></a></p><p><a href="https://mastodon.social/tags/keepassxc" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>keepassxc</span></a> <a href="https://mastodon.social/tags/passwordmanager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>passwordmanager</span></a> <a href="https://mastodon.social/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>privacy</span></a> <a href="https://mastodon.social/tags/PrivacyGuides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PrivacyGuides</span></a></p>
Norm<p>Just had a weird moment where, as I was typing my password into my password manager, I almost hit Tab expecting it to autocomplete... 🤦 </p><p><a href="https://fosstodon.org/tags/Password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Password</span></a> <a href="https://fosstodon.org/tags/PasswordManager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PasswordManager</span></a> <a href="https://fosstodon.org/tags/Autocomplete" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Autocomplete</span></a> <a href="https://fosstodon.org/tags/Bash" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Bash</span></a></p>
CEOTECH.IT<p>Google Password Manager: come elimina tutte le password<br><a href="https://mastodon.social/tags/Android" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Android</span></a> <a href="https://mastodon.social/tags/App" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>App</span></a> <a href="https://mastodon.social/tags/Cancellare" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cancellare</span></a> <a href="https://mastodon.social/tags/Chrome" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Chrome</span></a> <a href="https://mastodon.social/tags/Eliminare" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Eliminare</span></a> <a href="https://mastodon.social/tags/Google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Google</span></a> <a href="https://mastodon.social/tags/GooglePasswordManager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GooglePasswordManager</span></a> <a href="https://mastodon.social/tags/Notizie" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Notizie</span></a> <a href="https://mastodon.social/tags/Novit%C3%A0" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Novità</span></a> <a href="https://mastodon.social/tags/PassKey" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PassKey</span></a> <a href="https://mastodon.social/tags/Password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Password</span></a> <a href="https://mastodon.social/tags/PasswordManager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PasswordManager</span></a> <a href="https://mastodon.social/tags/Privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Privacy</span></a> <a href="https://mastodon.social/tags/Sicurezza" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Sicurezza</span></a> <a href="https://mastodon.social/tags/TechNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TechNews</span></a> <a href="https://mastodon.social/tags/Tecnologia" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Tecnologia</span></a> <a href="https://mastodon.social/tags/Windows" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Windows</span></a> </p><p><a href="https://www.ceotech.it/google-password-manager-come-elimina-tutte-le-password/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">ceotech.it/google-password-man</span><span class="invisible">ager-come-elimina-tutte-le-password/</span></a></p>
Sass, David<blockquote><p>In summary, always use two-factor authentication. We left it off because we had multiple employees logging into the account, but clearly it’s not worth the risk. - Snopes</p></blockquote><p>With a paid <a href="https://infosec.exchange/tags/PasswordManager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PasswordManager</span></a> like <a href="https://infosec.exchange/tags/Bitwarden" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Bitwarden</span></a> you can have <a href="https://infosec.exchange/tags/MFA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>MFA</span></a> on shared accounts very easily.</p><p>Alternatively, you could set up <a href="https://infosec.exchange/tags/TOTP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TOTP</span></a> with the different <a href="https://infosec.exchange/tags/Authenticator" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Authenticator</span></a> apps on multiple devices, you just need to do it in the same time.</p>
Fossery Tech :debian: :gnome:<p>FOSS NEWS</p><p>Firefox 136 released with vertical tabs, official ARM64 Linux binaries, hardware video decoding for AMD GPUs on Linux, new HTTPS-First behavior for upgrading page loads to HTTPS, support for copying PNG images out of the browser etc.:<br><a href="https://9to5linux.com/mozilla-firefox-136-is-out-with-vertical-tabs-and-official-arm64-linux-binaries" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">9to5linux.com/mozilla-firefox-</span><span class="invisible">136-is-out-with-vertical-tabs-and-official-arm64-linux-binaries</span></a></p><p>Firefox 137 beta available with HEVC playback support on Linux, ability to identify all links in PDF documents and turn them into hyperlinks etc.:<br><a href="https://9to5linux.com/firefox-137-enters-public-beta-testing-with-hevc-playback-support-on-linux" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">9to5linux.com/firefox-137-ente</span><span class="invisible">rs-public-beta-testing-with-hevc-playback-support-on-linux</span></a></p><p>Thunderbird 136 released with dark mode toggle for messages, new Appearance setting to control message threading and sorting order globally, bug fixes and security patches:<br><a href="https://www.omgubuntu.co.uk/2025/03/thunderbird-136-release-adds-new-appearance-controls" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">omgubuntu.co.uk/2025/03/thunde</span><span class="invisible">rbird-136-release-adds-new-appearance-controls</span></a></p><p>KeePassXC 2.7.10 released with support for importing passwords from Proton Pass (only unencrypted JSON files, no Passkeys currently), support for KeePass2 TOTP config settings, support for generating passphrases using a mix of uppercase and lowercase words ("MIXED case"), UI improvements etc.:<br><a href="https://9to5linux.com/keepassxc-2-7-10-open-source-password-manager-brings-proton-pass-support" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">9to5linux.com/keepassxc-2-7-10</span><span class="invisible">-open-source-password-manager-brings-proton-pass-support</span></a></p><p>/e/OS 2.8 released with LineageOS 21 base, privacy policy linked in account manager, App Lounge gets a refined warning message for manual updates and a more readable format for F-Droid app descriptions, software updates, bug fixes:<br><a href="https://alternativeto.net/news/2025/3/-e-os-2-8-released-with-improved-account-manager-smoother-app-lounge-and-bug-fixes/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">alternativeto.net/news/2025/3/</span><span class="invisible">-e-os-2-8-released-with-improved-account-manager-smoother-app-lounge-and-bug-fixes/</span></a></p><p>Internxt Drive becomes the first cloud storage with post-quantum encryption:<br><a href="https://news.itsfoss.com/internxt-drive-post-quantum-encryption/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">news.itsfoss.com/internxt-driv</span><span class="invisible">e-post-quantum-encryption/</span></a></p><p>(Linux news in original post)</p><p><a href="https://social.linux.pizza/tags/WeeklyNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>WeeklyNews</span></a> <a href="https://social.linux.pizza/tags/News" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>News</span></a> <a href="https://social.linux.pizza/tags/FOSS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FOSS</span></a> <a href="https://social.linux.pizza/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenSource</span></a> <a href="https://social.linux.pizza/tags/OpenSourceNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenSourceNews</span></a> <a href="https://social.linux.pizza/tags/FOSSNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FOSSNews</span></a> <a href="https://social.linux.pizza/tags/Firefox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Firefox</span></a> <a href="https://social.linux.pizza/tags/Mozilla" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Mozilla</span></a> <a href="https://social.linux.pizza/tags/MozillaFirefox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>MozillaFirefox</span></a> <a href="https://social.linux.pizza/tags/Firefox136" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Firefox136</span></a> <a href="https://social.linux.pizza/tags/FirefoxBeta" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FirefoxBeta</span></a> <a href="https://social.linux.pizza/tags/Thunderbird" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Thunderbird</span></a> <a href="https://social.linux.pizza/tags/Thunderbird136" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Thunderbird136</span></a> <a href="https://social.linux.pizza/tags/KeePassXC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>KeePassXC</span></a> <a href="https://social.linux.pizza/tags/eOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>eOS</span></a> <a href="https://social.linux.pizza/tags/Internxt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Internxt</span></a> <a href="https://social.linux.pizza/tags/Browser" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Browser</span></a> <a href="https://social.linux.pizza/tags/WebBrowser" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>WebBrowser</span></a> <a href="https://social.linux.pizza/tags/Email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Email</span></a> <a href="https://social.linux.pizza/tags/EmailClient" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EmailClient</span></a> <a href="https://social.linux.pizza/tags/PasswordManager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PasswordManager</span></a> <a href="https://social.linux.pizza/tags/CustomRom" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CustomRom</span></a> <a href="https://social.linux.pizza/tags/OperatingSystem" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OperatingSystem</span></a> <a href="https://social.linux.pizza/tags/Cloud" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cloud</span></a> <a href="https://social.linux.pizza/tags/CloudProvider" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CloudProvider</span></a> <a href="https://social.linux.pizza/tags/CloudStorage" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CloudStorage</span></a> <a href="https://social.linux.pizza/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://social.linux.pizza/tags/Privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Privacy</span></a> <a href="https://social.linux.pizza/tags/FosseryTech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FosseryTech</span></a></p>
Linux Is Best<p><span>A list of Digital Service Providers outside the jurisdiction of the United States of America.<br><br></span><a href="https://codeberg.org/Linux-Is-Best/Outside_Us_Jurisdiction" rel="nofollow noopener noreferrer" target="_blank">https://codeberg.org/Linux-Is-Best/Outside_Us_Jurisdiction</a><span><br><br>This is a group project, so feel free to reach out if you have any suggestions, or learn any new information.<br><br></span><a href="https://mk.absturztau.be/tags/Vpn" rel="nofollow noopener noreferrer" target="_blank">#Vpn</a> <a href="https://mk.absturztau.be/tags/Email" rel="nofollow noopener noreferrer" target="_blank">#Email</a> <a href="https://mk.absturztau.be/tags/Dns" rel="nofollow noopener noreferrer" target="_blank">#Dns</a> <a href="https://mk.absturztau.be/tags/Domain" rel="nofollow noopener noreferrer" target="_blank">#Domain</a> <a href="https://mk.absturztau.be/tags/Messenger" rel="nofollow noopener noreferrer" target="_blank">#Messenger</a> <a href="https://mk.absturztau.be/tags/WebHosting" rel="nofollow noopener noreferrer" target="_blank">#WebHosting</a> <a href="https://mk.absturztau.be/tags/PasswordManager" rel="nofollow noopener noreferrer" target="_blank">#PasswordManager</a> <a href="https://mk.absturztau.be/tags/WebSearch" rel="nofollow noopener noreferrer" target="_blank">#WebSearch</a> <a href="https://mk.absturztau.be/tags/UsJurisdiction" rel="nofollow noopener noreferrer" target="_blank">#UsJurisdiction</a> <a href="https://mk.absturztau.be/tags/Project2025" rel="nofollow noopener noreferrer" target="_blank">#Project2025</a> <a href="https://mk.absturztau.be/tags/UnitedStates" rel="nofollow noopener noreferrer" target="_blank">#UnitedStates</a></p>
The New Oil<p><a href="https://mastodon.thenewoil.org/tags/1Password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>1Password</span></a> offers geo-locating help for bad apps that constantly log you out</p><p><a href="https://arstechnica.com/gadgets/2025/03/1password-offers-geo-locating-help-for-bad-apps-that-constantly-log-you-out/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">arstechnica.com/gadgets/2025/0</span><span class="invisible">3/1password-offers-geo-locating-help-for-bad-apps-that-constantly-log-you-out/</span></a></p><p><a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://mastodon.thenewoil.org/tags/PasswordManager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PasswordManager</span></a></p>
The New Oil<p>Malicious <a href="https://mastodon.thenewoil.org/tags/Chrome" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Chrome</span></a> extensions can spoof password managers in new attack</p><p><a href="https://www.bleepingcomputer.com/news/security/malicious-chrome-extensions-can-spoof-password-managers-in-new-attack/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">bleepingcomputer.com/news/secu</span><span class="invisible">rity/malicious-chrome-extensions-can-spoof-password-managers-in-new-attack/</span></a></p><p><a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://mastodon.thenewoil.org/tags/PasswordManager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PasswordManager</span></a> <a href="https://mastodon.thenewoil.org/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>passwords</span></a> <a href="https://mastodon.thenewoil.org/tags/malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>malware</span></a></p>
Notizie dal Fediverso<p><strong>KeePass XC 2.7.10 introduce l’importazione da Proton Pass</strong></p><p>KeePass XC si aggiorna alla versione 2.7.10 introducendo alcune novità tra cui la possibilità di importare le password da Proton Pass.</p><p><a href="https://www.lealternative.net/2025/03/07/keepass-xc-2-7-10-introduce-limportazione-da-proton-pass/" class="" rel="nofollow noopener noreferrer" target="_blank">https://www.lealternative.net/2025/03/07/keepass-xc-2-7-10-introduce-limportazione-da-proton-pass/</a></p>
Tx1Rx2<p>Malicious Chrome extension can spoof password-managers...! <a href="https://www.bleepingcomputer.com/news/security/malicious-chrome-extensions-can-spoof-password-managers-in-new-attack/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">bleepingcomputer.com/news/secu</span><span class="invisible">rity/malicious-chrome-extensions-can-spoof-password-managers-in-new-attack/</span></a><br>Hope to get some statement from the big players on the market!<br>(Proton will probably not answer, as they went away from fediverse) <a href="https://social.tchncs.de/tags/passwordmanager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>passwordmanager</span></a> <a href="https://social.tchncs.de/tags/1password" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>1password</span></a><br><a href="https://social.tchncs.de/tags/bitwarden" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bitwarden</span></a> <a href="https://social.tchncs.de/tags/protonpass" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>protonpass</span></a> CC: <span class="h-card" translate="no"><a href="https://1password.social/@1password" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>1password</span></a></span> / <span class="h-card" translate="no"><a href="https://fosstodon.org/@bitwarden" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>bitwarden</span></a></span> / <span class="h-card" translate="no"><a href="https://mastodon.social/@protonprivacy" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>protonprivacy</span></a></span> / <span class="h-card" translate="no"><a href="https://fosstodon.org/@keepassxc" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>keepassxc</span></a></span></p>
The New Oil<p><a href="https://mastodon.thenewoil.org/tags/KeePassXC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>KeePassXC</span></a> 2.7.10 released</p><p><a href="https://keepassxc.org/blog/2025-03-04-2.7.10-released/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">keepassxc.org/blog/2025-03-04-</span><span class="invisible">2.7.10-released/</span></a></p><p><a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://mastodon.thenewoil.org/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>passwords</span></a> <a href="https://mastodon.thenewoil.org/tags/PasswordManager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PasswordManager</span></a> <a href="https://mastodon.thenewoil.org/tags/FOSS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FOSS</span></a></p>
Grant_H<p>Question for <a href="https://mastodon.social/tags/infoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infoSec</span></a> people:</p><p>I need to recommend a <a href="https://mastodon.social/tags/passwordManager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>passwordManager</span></a> to my high school teacher colleagues. Full spectrum of computer literacy, everyone needs to be able to use it.<br>I'm a KeePass fan, with a manually configured sync - beyond 80% of them. <br>What would you recommend?</p>
Linuxiac<p>KeePassXC 2.7.10 open-source password manager brings a Proton Pass importer, font size control, and more.<br><a href="https://linuxiac.com/keepassxc-2-7-10-brings-proton-pass-importer/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">linuxiac.com/keepassxc-2-7-10-</span><span class="invisible">brings-proton-pass-importer/</span></a><br><a href="https://mastodon.social/tags/passwordmanager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>passwordmanager</span></a> <a href="https://mastodon.social/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>opensource</span></a></p>
CryptGoat<p><a href="https://fedifreu.de/tags/KeePassXC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>KeePassXC</span></a> 2.7.10 was released, including many bug fixes and enhancements such as <a href="https://fedifreu.de/tags/ProtonPass" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ProtonPass</span></a> import, changes to the password generator and adjustable font size.<br><a href="https://keepassxc.org/blog/2025-03-04-2.7.10-released/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">keepassxc.org/blog/2025-03-04-</span><span class="invisible">2.7.10-released/</span></a></p><p><a href="https://fedifreu.de/tags/Passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Passwords</span></a> <a href="https://fedifreu.de/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://fedifreu.de/tags/FOSS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FOSS</span></a> <a href="https://fedifreu.de/tags/FreeSoftware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FreeSoftware</span></a> <a href="https://fedifreu.de/tags/passwordmanager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>passwordmanager</span></a></p>
Bluelupo<p>KeePassXC 2.7.10 Open-Source Password Manager Brings Proton Pass Support - 9to5Linux</p><p><a href="https://9to5linux.com/keepassxc-2-7-10-open-source-password-manager-brings-proton-pass-support" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">9to5linux.com/keepassxc-2-7-10</span><span class="invisible">-open-source-password-manager-brings-proton-pass-support</span></a></p><p><a href="https://social.tchncs.de/tags/KeepassXC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>KeepassXC</span></a> <a href="https://social.tchncs.de/tags/Release" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Release</span></a> <a href="https://social.tchncs.de/tags/Passwordmanager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Passwordmanager</span></a> <a href="https://social.tchncs.de/tags/Opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Opensource</span></a></p>
Erik van Straten<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@sophieschmieg" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>sophieschmieg</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@neilmadden" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>neilmadden</span></a></span> </p><p>IMO we need to stop coming up with algorithms to securely store "derivatives" of typically weak passwords, as</p><p> IT WILL FAIL.</p><p>From <a href="https://www.akkadia.org/drepper/SHA-crypt.txt" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">akkadia.org/drepper/SHA-crypt.</span><span class="invisible">txt</span></a>:<br>❝<br>In addition, the produced output for [...] MD5 has a short length which makes it possible to construct rainbow tables.<br>❞</p><p>Please correct me if I'm wrong, but even in 2025 suggesting that a rainbow table is feasible for (lets cut a few bits for MD5 weaknesses) random numbers of 120 bits in length is BS (in order to create FUD).</p><p>If I'm right about that, the least bad thing to do is:</p><p>1) Everyone should use a password manager (pwmgr) because people simply do not have the ability to come up with a sufficiently strong password that is *unique for each account*, let alone for multiple accounts (sometimes hundreds), to remember them absolutely error-free, and to recall which password was chosen for which account.</p><p>Note: IMO password *reuse* currently is the biggest threat. Entering a reused password on a fake (phishing) website may have devastating consequences, because (when a password is reused for multiple accounts) chances are that ALL those accounts are compromised. Note that the complexity and uniqueness of the password are IRELLEVANT. And, what KDF is used on the server, is IRRELEVANT as well.</p><p>2) Let the pwngr generate a (cryptographically) random password, as long and with as much entropy as allowed by the server.</p><p>3) Use a strong master password and NEVER forget it (typical beginner failure).</p><p>4) Make sure the database is backed up in more than one place, and make a backup after each modification.</p><p>5) Make sure that the device the password mamager is used on, *never* gets compromised.</p><p>6) Double check that https:// is used. Better, make sure to use a browser that blocks http:// connections and warns you (Safari on iOS/iPadOS now supports "Not Secure Connection Warning"). In all browsers such a setting is OFF by default: ENABLE IT!</p><p>7) On a mobile device: use "Autofill". The OS then transfers the domain name (shown in the browser's address bar) to the pwmgr. If a matching domain name is *not found* in the pw database, assume that you're on a (fake) phishing website! In that case: DO NOT ATTEMPT TO LOG IN by looking up credentials yourself. Reasons for 7, two examples:<br>----<br> fake: circle-ci·com<br> real: circleci.com<br>----<br> fake: lîdl.be<br> real: lidl.be<br>----</p><p>If people would follow this advice (which is not just mine), even MD5 for storing a one-way derivative of the password on the server would be fine.</p><p>HOWEVER: don't use MD5 - because "never use MD5 for whatever" is easier to remember than "don't use MD5 if preimage attacks are possible".</p><p>P.S. I'm not a cryptographer (although I'm quite interested in the matter).</p><p><a href="https://infosec.exchange/tags/MD5" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>MD5</span></a> <a href="https://infosec.exchange/tags/PasskeysStillSuck" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PasskeysStillSuck</span></a> <a href="https://infosec.exchange/tags/PasswordManager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PasswordManager</span></a> <a href="https://infosec.exchange/tags/Autofill" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Autofill</span></a> <a href="https://infosec.exchange/tags/DomainName" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DomainName</span></a> <a href="https://infosec.exchange/tags/httpVShttps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>httpVShttps</span></a> <a href="https://infosec.exchange/tags/httpsVShttp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>httpsVShttp</span></a> <a href="https://infosec.exchange/tags/KDF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>KDF</span></a> <a href="https://infosec.exchange/tags/Argon2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Argon2</span></a> <a href="https://infosec.exchange/tags/scrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>scrypt</span></a> <a href="https://infosec.exchange/tags/bcrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bcrypt</span></a> <a href="https://infosec.exchange/tags/KeyDerivationFunction" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>KeyDerivationFunction</span></a> <a href="https://infosec.exchange/tags/OneWayDerivative" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OneWayDerivative</span></a> <a href="https://infosec.exchange/tags/HashFunction" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>HashFunction</span></a> <a href="https://infosec.exchange/tags/Cryptography" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cryptography</span></a> <a href="https://infosec.exchange/tags/CryptographicHashFunction" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CryptographicHashFunction</span></a></p>
Dr. TheDbof :verified:<p>I wrote how to install and use KeepassXC (<span class="h-card" translate="no"><a href="https://fosstodon.org/@keepassxc" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>keepassxc</span></a></span>) , an awesome free password manager.</p><p>Setup KeepassXC (in 2025) <a href="https://davidebove.com/blog/keepassxc-2025/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">davidebove.com/blog/keepassxc-</span><span class="invisible">2025/</span></a> via <span class="h-card" translate="no"><a href="https://infosec.exchange/@dbof" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>dbof</span></a></span></p><p><a href="https://infosec.exchange/tags/keepassxc" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>keepassxc</span></a> <a href="https://infosec.exchange/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>passwords</span></a> <a href="https://infosec.exchange/tags/passwordmanager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>passwordmanager</span></a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a></p>
Lars Wirzenius<p>I've made release 0.3.0 of sopass, my command line password manager that uses a Stateless OpenPGP implementation for cryptography.</p><p>* configuration file<br>* add value from named file or stdin<br>* default to rsop<br>* manual page, built-in help</p><p><a href="https://sopass.liw.fi/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">sopass.liw.fi/</span><span class="invisible"></span></a></p><p><a href="https://toot.liw.fi/tags/sopass" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sopass</span></a> <a href="https://toot.liw.fi/tags/pass" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pass</span></a> <a href="https://toot.liw.fi/tags/passwordManager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>passwordManager</span></a> <a href="https://toot.liw.fi/tags/commandLine" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>commandLine</span></a> <a href="https://toot.liw.fi/tags/cli" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cli</span></a> <a href="https://toot.liw.fi/tags/openpgp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>openpgp</span></a> <a href="https://toot.liw.fi/tags/statelessOpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>statelessOpenPGP</span></a> <a href="https://toot.liw.fi/tags/sop" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sop</span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload