• breadsmasher@lemmy.world
    link
    fedilink
    English
    arrow-up
    2
    ·
    1 year ago

    Are you suggesting keeping a plaintext file for all your credentials is preferable to an encrypted password vault?

    Lastpass was the company breached - I closed my account soon after, but moved to 1Password.

    The way it’s supposed to work is the password vaults are encrypted. Only knowing the passphrase should decrypt it. So while Lastpass had a bunch of stuff leak, which I think included some vaults - as long as you have a strong passphrase it shouldn’t be possible to crack.

    Conversely, if you get some malware scooping your files, as soon as they have that plaintext file on your desktop they own every single credential in there