password managers generate a unique password for each website. this means if one of your passwords leaks it won't compromise any of your other website logins.
nostr-login is a regression: if you leak your nsec then they have access to every website that you've ever logged in to.
using your npub for logging into everything is a really bad idea security wise, please be conscious of this before implementing or pushing this as a login solution to websites which may contain sensitive information.
Useful thought! And it seemed to me the convenience of logging in with Google addresses. 😮💨
Please Login to reply.
Convenience is the enemy of security.
Using Google as SSO is not great but at least you can reset your password with Google. If you NSec is leaked you are screwed.
Considering this context, it is.
