Replying to Avatar PABLOF7z

> but 1password is E2E encrypted and the data is only viewable by people that have the account key.

that you know of

it would be trivial for them to push an update that leaks all your secrets

maybe they, or a rogue employee, already has
Avatar
The Fockin’ Fury 2y ago

I'm definitely not denying that possibility, but the question is: should I trust my own very limited abilities as a hobbyist sysadmin to provide a more secure environment than what I might pay for with the likes of 1Password?

There are different risks either way. I think the specter of "it's me vs. an entire internet full of baddies" should be rightfully scary to any prospective self-hoster that takes privacy and security seriously.

Reply to this note

Please Login to reply.

Discussion

Avatar
PABLOF7z 2y ago

just don't use it for the stuff that matters like your seed

other stuff, stuff that has a password, is centralized anyway and you are at the mercy of the provider whether you'll get rugged or not

if you keep your seed on 1pass then you are their mercy whether they'll take your funds or not