this post was submitted on 30 Apr 2024
346 points (97.8% liked)

Memes

8325 readers
1523 users here now

Post memes here.

A meme is an idea, behavior, or style that spreads by means of imitation from person to person within a culture and often carries symbolic meaning representing a particular phenomenon or theme.

An Internet meme or meme, is a cultural item that is spread via the Internet, often through social media platforms. The name is by the concept of memes proposed by Richard Dawkins in 1972. Internet memes can take various forms, such as images, videos, GIFs, and various other viral sensations.


Laittakaa meemejä tänne.

founded 2 years ago
MODERATORS
 
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 3 points 6 months ago (3 children)

Where do you keep the key file and the PW managers DB? I feel like they would be too much side-by-side to really increase security in my case

[–] [email protected] 4 points 6 months ago

Can always use a service like bitwarden, even their free tier is very good

[–] [email protected] 4 points 6 months ago

I won't disclose where I store mine.

But I'd recommend to:

  • Not backup your PW manager's database + key file in the same location
    (That would decrease security, x1 data breach would allow them to easily brute force your PW DB since they'll have the key)
  • Not go with a PW manager that does not allow you to choose a location where you desire to backup to (Seen plenty of mainstream PW managers getting data breached by now, so going with a cloud, which is not solely used for PW managers, has an advantage imo, since they tend to be less targeted by hackers)

I've been happily using KeeWeb + Keepass2Android for years now:

[–] [email protected] 3 points 6 months ago (2 children)

You could use a USB drive that you only ever plug in to open the password manager. It's not the most secure option but it's a bit better than no key file at all.

[–] [email protected] 3 points 6 months ago (1 children)

Can't use it with a phone though. To be honest, I think just having a password manager gives you protection against 99% of the attack surface. And if someone is really determined, I'm not sure the key file will be hard to obtain for them no matter what. But I was curious what setup others have

[–] [email protected] 3 points 6 months ago

If someone is really determined to attack you specifically they will just get a wrench.

[–] [email protected] 0 points 6 months ago* (last edited 6 months ago)

or store the key in a tpm chip protected by password +biometric auth? that's what kost OSs do for storing passkeys and encryption keys