TechTakes

2287 readers

79 users here now

Big brain tech dude got yet another clueless take over at HackerNews etc? Here's the place to vent. Orange site, VC foolishness, all welcome.

This is not debate club. Unless it’s amusing debate.

For actually-good tech, you want our NotAwfulTech community

founded 2 years ago

MODERATORS

dgerard@awful.systems

KeePassXC doubles down on AI use (keepassxc.org)

submitted 3 days ago by e8d79@discuss.tchncs.de to c/techtakes@awful.systems

36 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] Forester@pawb.social 6 points 3 days ago* (last edited 3 days ago) (1 children)

I'd never trust the browser to have direct access ¯⁠\⁠_⁠(⁠ツ⁠)⁠_⁠/⁠¯ i copy paste

[–] rook@awful.systems 4 points 2 days ago

That’s a funny thing to say. The communication channel between the browser and whatever external password store can be made as restricted as you like… keepassxc and its browser api let you restrict which credentials are offered to the browser, and can let you manually OK each request, for example. It doesn’t need unrestricted read access.

The bitwarden browser plugins are a bit more dubious though, because they communicate with a remote password store with more limited controls, and their enthusiasm for trying to store passkeys and totp hashes is definitely worth avoiding.