I was in my English class few days ago. and as a part of free conversation I ask teacher and other students (4 in total including me) if they use a password manager. No one do. One of them is a csharp programmer. and BTW they all said they were confident in the passwords they kept in their heads. So am I in a bubble thinking that password managers is a must?
#asknostr
No. Those people will get themselves hacked eventually.
1. You're Peter Todd, don't fucking waste people's time talking to them like you're worth it
2. Nostr signer apps aren't that different from using a password manager
> So am I in a bubble thinking that password managers is a must?
Is a must, you shouldn't use one single password for everything, and you can't remember 100+ passwords. So you have to use a password manager.
Also you have to store your nostr, SSH and PGP keys somewhere.
right, I have 262 records in my password manager ) my guess they use the same password multiple times
As someone who worked for a company that regularly did password audits by paying someone to try and brute-force their employees' passwords, I can attest that a password manager is a must. I can proudly say that I never had any of mine cracked, and it was all due to using a password manager to generate strong passwords that I never had to remember.
As long as you don't use shitty (often cloud hosted) password managers, I'd say it's a no brainer to use one.
Assuming the master password for the pw manager is not shitty and the access can't be reset by insecure means.
Had a family member use a cloud hosted pw manager where access could be gained by an SMS based reset token, not exactly secure.
right. Which would you suggest? preferably free, i'm using proton but trying to find something for my non tech sister
Keepass or keepassxc, they both save to a local encrypted file.
Requires you to make backups of the file regularly and of you lose the password you're fucked. If she can live with that :)
