Recent comments in /f/technology
guatemaleco t1_j84dahy wrote
Reply to comment by nlgenesis in Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
Usernames WERE encrypted.
DevAway22314 t1_j84d0rj wrote
Reply to comment by icky_boo in Texas Taxpayers Face a $100M Bill to Update Voting Machines with Equipment That Doesn’t Exist Yet by Sorin61
Link was broken, fixed it: https://en.wikipedia.org/wiki/Write_once_read_many
Geass10 t1_j84a5pw wrote
Reply to Texas Taxpayers Face a $100M Bill to Update Voting Machines with Equipment That Doesn’t Exist Yet by Sorin61
Good thing they voted for another Republican. Feel no sympathy for that state.
Geass10 t1_j84a494 wrote
Reply to Texas Taxpayers Face a $100M Bill to Update Voting Machines with Equipment That Doesn’t Exist Yet by Sorin61
Good thing they voted for another Republican. Feel no sympathy for that state.
ADroopyMango t1_j848ne3 wrote
Reply to comment by [deleted] in Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
ok, you're just talking about trading convenience for security. you're saying it's a waste of time aka inconvenient. that doesn't mean the paper method is less secure.
nobody said anything about an "equal substitute." there are obvious tradeoffs.
[deleted] t1_j846dle wrote
Reply to comment by Dominicus1165 in Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
[deleted]
[deleted] t1_j846asy wrote
Reply to comment by Dominicus1165 in Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
[deleted]
ADroopyMango t1_j846964 wrote
Reply to comment by Dominicus1165 in Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
a piece of paper is much more secure than a database. physical access will literally always take more effort than if I can just steal your shit from the comfort of my own home.
you're talking about trading security for convenience. and you can do that as long as you use some common sense.
for example, you could write down your most sensitive passwords (bank etc.) and do your best to commit those to memory if you're "at the club" as opposed to your ESPN account or whatever where the hack to life impact ratio is minimal. store those in your password manager all you want.
there is no easy way to have 200 passwords lol. it's like having 200 keys on a keychain.
[deleted] t1_j844jgu wrote
Reply to comment by rastilin in Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
Because it's a dumb way to go about it and a waste of time. Are you going to be writing down all of your passwords by hand? Manually updating it as you change them? Getting the paper out of the drawer every time you need to log in? What if you need to log in on your phone when you're away from home?
None of these hacks result in your password being usable. The data these hackers get is a non-sensical string that they can't do anything with. I still wouldn't stick with LastPass. It's clear they give zero shits about internal security at this point. But saying that paper is an equal substitute to a password manager is just wrong.
Diknak t1_j83ysll wrote
Reply to Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
This is why I like Enpass. Your passwords aren't on a server with a vault of everyone else's passwords. It's much less centralized.
CakeAccomplice12 t1_j83xwv9 wrote
Reply to comment by doogle_126 in Texas Taxpayers Face a $100M Bill to Update Voting Machines with Equipment That Doesn’t Exist Yet by Sorin61
Fled Cruz, is that you?
EntertainerOrk t1_j83vbsq wrote
Reply to comment by jmpalermo in Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
Terrific, so instead of having to crack a dozen different passwords for your different accounts, they have to crack one and they got them all. The modern equivalent of using the same password fir every account. Top notch, guys.
EntertainerOrk t1_j83v4nc wrote
Reply to Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
I get downvoted every time when I clown on these pass companies. Handle your damn passwords yourself. Put them in your browser, hell even write them on your hard drive. No one's gonna find them there. If someone has your computer, it's game over for you anyway, at that point nothing matters anymore. Maybe Lastpass should use a better password on their datacenter or something. Weird how I don't get hacked, yet every couple of months I hear another story like this of a big password vault type application company being hacked.
ivanoski-007 t1_j83ufx3 wrote
Reply to comment by MC_chrome in Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
People... Don't use chrome? Shocking
MC_chrome t1_j83tzxo wrote
Reply to comment by ivanoski-007 in Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
No, not really. If you were to take a peek at Bitwarden or 1Password (especially 1Password), you would realize what a joke Microsoft/Google/Apple’s password managers are.
To begin, you can’t use Google’s password manager outside of the Chrome browser because the service lacks its own app.
[deleted] t1_j83ttko wrote
Reply to comment by ADroopyMango in Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
[deleted]
ivanoski-007 t1_j83tskm wrote
Reply to comment by MC_chrome in Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
But it does it better than most
ivanoski-007 t1_j83tolj wrote
Reply to comment by teh_maxh in Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
>It's missing a lot of features.
Like what, what more do you need that google password manager doesn't have?
MC_chrome t1_j83th40 wrote
Reply to comment by ivanoski-007 in Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
Google’s main focus isn’t password management, for one
MC_chrome t1_j83tet5 wrote
Reply to comment by bazzbj in Texas Taxpayers Face a $100M Bill to Update Voting Machines with Equipment That Doesn’t Exist Yet by Sorin61
The people living in Texas’s largest cities? Not really.
The chucklefucks living in the middle of nowhere? Absolutely
nlgenesis t1_j83tdn5 wrote
Reply to comment by jmpalermo in Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
If you read the article, you will read that, while the passwords were encrypted, a lot of other stolen data (usernames, websites, other data) was stored unencrypted.
Dominicus1165 t1_j83t9mx wrote
Reply to comment by FreeWildbahn in Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
As Long as the password is not vulnerable to a rainbow table attack
Dominicus1165 t1_j83t3hj wrote
Reply to comment by Admetus in Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
Oh yes. A list of 150 passwords.
And still super insecure. A good hacking tool would need like 0.0001 seconds to check them all. With 4GHz and 6 cores (24 million tries per second), this is an easy task.
Dominicus1165 t1_j83syqq wrote
Reply to comment by rastilin in Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
I habe around 150-200 passwords. Writing them all down is lots of work. But not only that. Maybe I need them somewhere else. Like on my phone on the go. So I need to take all my passwords with me.
And that paper can be stolen or lost easily. Like in a restaurant when going to the toilet or in a club.
Super insecure
[deleted] t1_j84dgai wrote
Reply to comment by nlgenesis in Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
[deleted]