We'd like to remind Forumites to please avoid political debate on the Forum... Read More »
We're aware that some users are experiencing technical issues which the team are working to resolve. Thank you for your patience.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
Google Password Manager
Options
Comments
-
I'm afraid I would have come to the exact opposite conclusion to you...
0 -
As others have said, I would only trust a password manager if it is completely open-sourced. I also do not store any passwords in web browsers as anyone with access to the browser can read the passwords. (Yes, I know that Firefox and related browsers like LibreWolf can safely encrypt the password database but once decrypted they face the same problem until all browser windows are closed.)
I would also never, ever use a password manager that stores its files in the cloud.
This leaves not very many options and I have for many years now relied on KeePass2 and compatible apps, first under Windows (https://keepass.info/), then Linux (https://keepassxc.org/) and also Android (https://github.com/PhilippC/keepass2android ).
Using an offline password manager is certainly not as convenient as one of the online offers or the browsers but my whole digital life is stored there and the small added inconvenience (though it's repeated every time I use the password database) is for me well worth it.
Like using 2FA/MFA it's just one of the many convenience/security trade-offs we all face.
0 -
Can they?TMSG said:As others have said, I would only trust a password manager if it is completely open-sourced. I also do not store any passwords in web browsers as anyone with access to the browser can read the passwords. (Yes, I know that Firefox and related browsers like LibreWolf can safely encrypt the password database but once decrypted they face the same problem until all browser windows are closed.)
I would also never, ever use a password manager that stores its files in the cloud.
I'm logged into my Google account on Chrome right now and I can't read my passwords without entering my Windows login info.
All of the suggestions have been dabbling so far into 'over the top' territory that I'm suprised a security purist hasn't trumped everyone yet by saying that 'if you're not storing your passwords on cold storage in a nuclear bunker guarded by lasers, you don't care about your security'.
MFA + any password manager is effectively impenetrable bar some intricate swim swap scheme or the victim willingly handing over the MFA codes (e.g. to a fraudster pretending to be from Google).
Data stored on the cloud is nearly always encrypted. As far as I'm aware, even the breach example on the first page of LastPass was just a breach of encrypted data - e.g. effectively useless to the hacker, but good for making headlines.Know what you don't1 -
Just for clarification, the image below is an example of what caused me to think that previously there was a Chrome browser password store.Exodi said:I don't know what the 'Chrome Browser Password store is', Chrome has featured the Google Password Manager for many years now (though recently they have been actively been pointing it out).
I have been using it for a few years but had not realised that it has always been the Google password manager.
1
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 350.7K Banking & Borrowing
- 253K Reduce Debt & Boost Income
- 453.4K Spending & Discounts
- 243.7K Work, Benefits & Business
- 598.4K Mortgages, Homes & Bills
- 176.8K Life & Family
- 256.8K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.1K Discuss & Feedback
- 37.6K Read-Only Boards