A gentle #CoSoSec / #SecurityHygiene reminder.
Don't let your browser save your passwords, use a full password manager.
The article misses one point... if you're using chrome and signed in to google, then it *does* prompt you with a password request, however, this comes with another attack vector. If your gmail password is compromised, then your passwords are too.
(myself, my chrome passwords are all fake - a sort of honeypot)
@Mandypar - ๐ฏ โ
@BIFC67 -: it depends on what you need out of it. I like LastPass due to the family plan. 1password has a lot of nice features. keypass has a large following here.
Here's an invitation to #cososec to give reasons for thier preferred #passwordManager.
I KeePass...but I don't expect much features...I don't care about sync or auto entry...just want em stored...I do care about cross platform
@opie @GharrOfNox @0x56 and with that cloud statement this somehow comes to mind
๐คWell fuck man, ๐ณyou couldn't drop this shit on me next week?
Now I'm gonna worry.๐ Cuz that's just how I roll๐๐๐๐
@Irishroze - why aren't you out eating tacos?
@0x56 @Irishroze the eternal question...
I got pitched by a street hustler in Vegas whose line was, "Donkey show...dollar tacos"
๐ค๐ฎ
Damn place was full, no parking.
So we scraped that plan and moved on.
No 'O' tonight either cuz MIL bought tickets for Sunday by mistake.
All dressed up now, (we figured out the oopsie as we were heading out๐) Roze is getting drunk AF. ๐๐
@0x56 In the settings section on Chrome based browsers you can set it not to offer to save passwords. I would also suggest you remember to sign out of your password manager when you are not there and change the settings in the password manager to re-prompt you for your password when you need to use it.