this post was submitted on 20 Mar 2025
34 points (100.0% liked)

Ask

284 readers
116 users here now

Rules

  1. Be nice
  2. Posts must be legitimate questions (no rage bait or sea lioning)
  3. No spam
  4. NSFW allowed if tagged
  5. No politics
  6. For support questions, please go to !newtolemmy@lemmy.ca

Icon by Hilmy Abiyyu A.

founded 1 week ago
MODERATORS
BoozeOrWater@lemm.ee
fxomt@lemmy.dbzer0.com
asudox@lemmy.asudox.dev
34
What free offline, local desktop software do you like and would recommend? (lemm.ee)
submitted 1 day ago* (last edited 1 day ago) by ALostInquirer@lemm.ee to c/ask@lemm.ee
30 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] Clearwater@lemmy.world 5 points 1 day ago

If stored in a browser, your passwords become very obvious targets for stealer malware (the stuff that does account takeovers). Using keepass or other similar software won't make it impossible for malware to get them, but the likelihood malware will target it is significantly lower.

Paid services put your passwords in the hands of the service. In the case of a data breach (see LastPass), all your passwords will get out.

Note: Password manager services should encrypt your data such that a data breach does not instantly pwn every single account of every single customer. However it is not possible for you as the customer to know until they get breached.

Note 2: When storing your passwords in the browser, they may also end up stored in Google or Mozilla's (and so on) servers, resulting in the worst of both worlds for security: Passwords are in a well-known location on your PC and a well-known location on the internet.