π¨ New research from ETH Zurich has found that popular password manager's zero-knowledge encryption claims don't fully hold up if their servers are compromised.
-
@simonzerafa @h0m3 @helloclippy @privacyguides Where the servers are located doesn't matter if the encryption is done right.
@dalias @h0m3 @helloclippy @privacyguides
Regulations might say otherwise. Also Data Sovereignity
-
@dalias @h0m3 @helloclippy @privacyguides
Regulations might say otherwise. Also Data Sovereignity
@simonzerafa @h0m3 @helloclippy @privacyguides If encryption is being used right they aren't storing any personal data, just meaningless random bits. There is a risk of loss of availability but no risk of exposure or misuse.
-
@privacyguides what do you recommend for self-hosting a password manager?
KeePassXC would be our recommendation for an offline password manager. You can see all our recommendations here: https://www.privacyguides.org/en/passwords/#local-storage
