I was gonna ask about the biometrics part in a separate question, but its both about security, so might as well combine it in one post.

Okay so I don’t use password managers. I just try to make easy to remember passwords 3-4 random words + 3-4 random numbers. Online accounts can’t be brute forced anyways. For offline accounts, I just increase the words and numbers. For mobile I don’t use biometrics, although I’ve been testing whether or not I want a pin + no biometrics or alphanumeric password + biometrics. I just can’t decide.

  • kyub@discuss.tchncs.de
    link
    fedilink
    English
    arrow-up
    1
    ·
    edit-2
    1 year ago

    Local GPG key pair + https://www.passwordstore.org/ synced peer-to-peer between devices via https://syncthing.net/

    So the key is always local but the password database is being synced between devices.

    pass on its own is great already (it’s basically just GPG encrypted text files with a good CLI frontend) but I make it even greater by using a slightly modified “passmenu” script which utilizes wofi (rofi for wayland) in dmenu mode to show a very fast popup of all your sites you have passwords stored for and by selecting it / pressing enter the pw gets copied into the clipboard.

    • 001100 010010@lemmy.dbzer0.comOP
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 year ago

      Gpg? I get nervous when people say that instead of a symmetric key system. When a quantum computer powerful enough gets invented, all non-quantum resistant asymmetric encryption systems will be broken. Honestly why not just use AES 256 just in case a quantum computer gets invented?