this post was submitted on 11 Jul 2023
368 points (98.2% liked)
Asklemmy
43742 readers
1318 users here now
A loosely moderated place to ask open-ended questions
Search asklemmy π
If your post meets the following criteria, it's welcome here!
- Open-ended question
- Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions. Assume best intent and be excellent to each other.
- Not regarding using or support for Lemmy: context, see the list of support communities and tools for finding communities below
- Not ad nauseam inducing: please make sure it is a question that would be new to most members
- An actual topic of discussion
Looking for support?
Looking for a community?
- Lemmyverse: community search
- sub.rehab: maps old subreddits to fediverse options, marks official as such
- [email protected]: a community for finding communities
~Icon~ ~by~ ~@Double_[email protected]~
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I tried bitwarden and others and finally just settled on the firefox password manager. It does everything I need.
For me the firefox password manager is totally fine : I know where the encrypted file is and I can manually back it up and copy to an other computer ($HOME/.mozilla/firefox/[profile folder]/key4.db + logins.json). You can decrypt yourself the file easily too.
I use Firefox as well. My uneducated concern. I once installed Chrome on my PC for something specific. During the install, it asked if I would like to import my saved logins from Firefox. I thought: "let's see". In fact, it unencrypted the file, and loaded all my passwords. So, my thought is, of someone was to gain access to that file, how hard would it really be to unencrypted it? If chrome can do it as part of their wizard.
Again, feel free to educate me, but that's my concern
I assume it would only be (properly) encrypted if you set a master password in firefox?
If chrome could bypass the master password, that would be concerning.
Oh neat. Just
gpg -d HOME/.mozilla/firefox/[profile folder]/key4.db + logins.json
?My only gripe is having to insert my password every 15min (afaik it's either that or having all your accessible by anyone using your computer). That and the fact that they discontinued the password manager they had on Android. This is what made me move to bitwarden.
I use it on Android Firefox every day, it syncs my passwords to all my linked firefox instances.
Ah, I was using Firefox Lockwise, which was discontinued, but I see that Firefox itself can act as a password manager now?
By which I mean an auto-fill service
Yes, andiyou can sync between you installs.
It not perfect but it's enough for me at least.